"  Laptop  backup  We  test  four  tools  that  automate  the  time-consuming  task 

of  backing  up  important  data  stored  on  laptops.  PAGE  55. 
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Fed:  Old  nets  out;  Web  in 

Public  embrace  of  electronic  payments  called  motivation. 


■  BY  ELLEN  MESSMER 

DALLAS  —  The  Federal  Re¬ 
serve  —  12  central  banks  that 
handle  interbank  transactions 
for  9,600  financial  institutions  — 
last  week  said  it  intends  to  even¬ 
tually  ditch  its  proprietary  appli¬ 
cations,  dial-up  and  even  its 
SNA  network  in  favor  of  using 
the  Internet.  That  transition 
should  be  well  under  way  by 
year-end,  officials  say.  1 

Among  the  factors  prompting 
this  move  is  a  detailed  study  by 
the  Fed  —  the  first  update  since 
1979  —  that  shows  electronic 
payments  are  soaring  while  use 
of  paper  checks  may  have 
topped  out.  The  growth  in 
Automated  Clearing  House 
(ACH)  payments,  the  type  of 


Paper  or 
electronic? 

Rise  in  electronic  payments 
expected  to  continue: 

Total  noncash  transactions 

(in  billions) 


15% 


40% 


1979 

37  billion 
total  noncash 
transactions 


2000 

80  billion 
total  noncash 
transactions 
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electronic  payment  the  Fed 
processes,  will  require  a  new 
generation  of  high-speed  net¬ 
works  and  a  better  way  to  share 
business  data  through  “open  sys¬ 
tems,”  according  to  Fed  execu¬ 
tives. 

The  Fed’s  decision-makers  say 
a  new  network  based  on  the 
Internet  will  offer  easier 
access  to  banks  and  their 
corporate  customers  for  pro- 
f  cessing  payments  and  ob¬ 
taining  historical  data  needed 
to  resolve  routine  conflicts. 

However,  putting  large-scale 
money-processing  on  the  Web 
raises  serious  security  concerns 
about  hackers  and  hybrid- 
worm  threats  damaging  mone¬ 
tary-transaction  flows.  Fed  offi- 
See  Federal  Reserve,  page  72 


Congress:  Tighten  IT  security 


■  BY  CAROLYN  DUFFY  MARSAN 

WASHINGTON,  D.C.  — 
Prompted  by  last  year’s  terrorist 
attacks,  momentum  is  building 
on  Capitol  Hill  to  expand  the 
role  of  the  National  Institute  of 
Standards  and  Technology  in 
establishing  IT  security  standards 
and  best  practices.  But  the 
prospect  is  raising  concerns  in 


some  circles. 

Four  bills  are  pending  in  the 
House  and  Senate  that  would 
double  or  triple  the  annual 
funding  of  NIST’s  Computer 
Security  Division.  One  of  these 
bills,  the  Cybersecurity  Research 
and  Development  Act,  passed 
the  House  with  overwhelming 
support. 

After  Sept.  11,  the  House 


Science  Committee  held  hear¬ 
ings  on  the  cyberterrorist  threat 
and  the  lack  of  a  coordinated 
U.S.  response.  The  hearings 
focused  on  the  need  for  more 
research  and  targeted  NIST  for 
See  NIST,  page  14 


Cisco  eyes 
bigger  role 
in  storage 


■  BY  DENI  CONNOR 

Cisco  is  expected  to  charge  the 
storage  market  as  soon  as  next 
month  with  the  introduction  of  a 
storage  switch  that  supports 
Fibre  Channel,  SCSI  and  Gigabit 
Ethernet. 

The  switch  will  have  eight 
Fibre  Channel  and  two  Gigabit 
Ethernet  ports,  letting  it  route 
SCSI  data  over  IP  and  simplify 
storage-area  network  (SAN)  con¬ 
figuration  by  replacing  existing 
Fibre  Channel  switches.  Sources 
expect  the  switch  to  have  many 
of  the  same  management  fea¬ 
tures  as  Cisco’s  SN  5420  router. 

Opinions  differ  as  to  how 
much  of  an  impact  Cisco  can 
make  on  a  storage  market  in 
which  it  has  not  been  much  of  a 
factor.  But  there  is  no  doubt  the 
See  Cisco,  page  16 


I  fc[Lack  of  experience] 
is  a  criticism  we've  heard 
before  when  we  entered 
two  other  welkestablished 
markets:  the  SNA  market 
...  and  voice  over  IP. 
We've  done  pretty  well  in 
both  instances.  9  9 

Soni  Jiandani 

Vice  president  of  marketing,  Cisco 


XML  the  glue  for  unified  messaging 

WebServices 


BY  JOHN  FONTANA 


All  Terri  Kouba  wants  is  a  little 
flexibility. 

As  a  systems  developer  at  the 
University  of  California,  Berkeley,  Kouba  is  spear¬ 
heading  an  effort  to  create  a  unified  communica¬ 
tions  system. The  system  will  tie  e-mail,  voice  mail 
and  fax  to  a  single  in-box  and  allow  access  to  it 
from  anywhere  —  be  it  an  e-mail  client,  a  tele- 


EARLY  ADOPTERS 

Second  in  a  three-part  series 


phone,  or  a  mobile  phone  or 
device. 

Oh,  and  Kouba  wants  it  to  be 
open  enough  so  that  she  can 
mix  and  match  vendors  or  add 
new  technologies  as  they  come  along. 

She  thinks  she’s  found  the  answer  in  Web  services 
The  university  is  in  the  midst  of  its  three-month 
Unified  Communications  Technical  Pilot,  whi<  ; 

See  Web  services,  page  14 
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Sun  ONE 

Open  Net  Environment 


Reports  from  the  road:  MLB®  Advanced  Media. 

Sun  empowers  Major  League  Baseball® Advanced 
Media  to  deliver  dynamic  Web  site  content  with 
the  Sun  ONE  Application  Server  to  over  40  million 
fans,  while  the  Sun  ONE  Directory  Server  keeps  visitor 
registration  information  safe. 

Sun’s  partner  for  the  ride:  EDS. 

Sun  provides  on-site  support  to  EDS  consulting  teams, 
so  they  can  provide  faster,  more  direct  service  to 
their  customers  implementing  enterprise-level  portal, 
wireless  and  Web  services  projects. 


REGISTER  TODAY 

for  our  exclusive  Web  seminar  on  the 
importance  of  open  standards  in  Web  services. 
www.sun.com/stayopen 


Make  the  net  work.  With  Sun" ONE, 
the  wide-open  comprehensive  software 
platform  for  Web  services. 

Once  you’ve  started  down  the  road  to  Web 
services,  you  need  to  move  fast,  stay  flexible 
and  take  advantage  of  business  opportunities 
whereveryou  find  them.That’s  where  Sun”ONE 
comes  in.  Sun  ONE  is  a  complete  software  archi¬ 
tecture  that  enables  you  to  create,  develop 
and  deploy  the  kind  of  innovative  “Services 
on  Demand”  that  build  customer  loyalty  and 


quickly  improve  your  business.  Sun  ONE  is 
backed  by  a  power  trio  of  award-winning 
products  (Sun  ONE  infrastructure  software,  the 
Solaris™  Operating  Environment  and  Sun  ONE 
Developer  Tools  for  Java")  and  is  built  on  open 
Web  standards  such  as  XML,  LDAP  and  the 
Java  universal  development  platform.  And 
since  it  is  designed  from  the  ground  up  to 
integrate  with  your  existing  IT  environment 
and  the  products  you  are  already  using,  control 
remains  firmly  in  your  hands. 


Make  the  net  work  with  Web  services 
that  can  transform  your  business: 


Transformative  change  begins 
with  Java"  technology. 

At  the  enterprise  level,  lava"  technology  and 
XML  mean  interoperability.  Sun"  ONE  capitalizes 
on  seven  years  of  )ava  leadership  to  provide  a 
platform  for  Web  services  that  leverages  your 
existing  systems.  And  since  78%  of  developers 
view  )2EE"  server  software  as  the  most  effective 
platform  for  building  and  deploying  Web  services, 
you  can  be  sure  Sun  ONE  will  get  you  started 
down  the  road  in  the  right  direction. 

The  Solaris"  Operating  Environment 
lets  you  deploy  services  on  an 
enterprise-class  platform. 

Make  sure  your  services  are  always  available 
for  your  customers,  with  the  rock-solid  Solaris" 
Operating  Environment.  You’ll  be  in  good 
company— after  all,  many  of  the  largest  Internet 
businesses  already  run  on  it.  Solaris  OE  is  the 
foundation  of  Sun  ONE  and  provides  a  highly 
reliable  application  platform  for  any  kind  of 
service.  That’s  what  we  call  “Services  on  Demand.” 


Sun  ONE  infrastructure  software 
delivers  services  today. 

Sun  ONE  Directory  Server  already  enables  60% 
of  the  Fortune  100  to  conduct  business  on 
the  Web  quickly  and  securely.  And  Sun  ONE 
Developer  Tools  for  lava  were  judged  Best  java 
IDE  by  )avaWorld.  They  both  work  seamlessly 
with  Sun  ONE  Application  Server  and  Sun  ONE 
Portal  Server  to  let  you  deliver  services  that 
quickly  scale  across  multiple  platforms.  The 
faster  you  get  your  Web  services  to  market, 
the  greater  the  business  opportunity.  There’s 
no  speed  limit  on  this  road. 

Sun  ONE  Consulting  can  start  you  down 
the  road  to  Web  services  right  now. 

Sun  ONE  Consulting  lets  you  reduce  the  time, 
cost  and  risk  of  transforming  your  business 
with  Web  services.  Sun  ONE  Consulting  can 
help  you  with  every  phase  of  developing  and 
deploying  innovative  services,  giving  you  the 
kinds  of  sustained  business  advantages  you 
would  expect  from  a  business  innovator  like  Sun. 


Companies  already  on 
the  road  with  Sun  “ONE: 

Life  Time  Fitness 

The  Sun  ONE  architecture  has  enabled 
Life  Time  Fitness  to  store  account  and 
payment  data  for  thousands  of  members 
in  order  for  employees  and  customers  to 
conduct  millions  of  transactions  over  the 
Life  Time  Fitness  network. 


Systems  Integrators: 

Sun  teams  with  some  of  the  best  systems  integrators  in  the  business,  so  you’ll  have  the  expertise 
you  need  to  begin  developing  “Services  on  Demand”  on  the  Sun  ONE  platform  today: 

°  Cap  Gemini  Ernst  &  Young  °  EDS 

°  Computer  Sciences  Corporation  °  KPMG  Consulting,  Inc. 

°  Deloitte  Consulting  0  Science  Applications  International  Corporation 


The  road  to 
Web  services 
begins  with 
Sun  ONE. 


CREATE  NEW  SERVICES 

•  Sun  ONE  Developer  Tools 

•  Sun  ONE  Application  Server 

•  Sun  ONE  Integration  Server 

The  fastest  road  to  maximizing 
productivity  and  the  speed  of 
development. 


DELIVER  SERVICES 

•  Sun  ONE  Portal  Server 

•  Sun  ONE  Messaging  Server 

•  Sun  ONE  Calendar  Server 

The  fastest  road  to  providing 
prepackaged  and 
custom-developed 
services. 


IDENTITY  AND  SECURITY 

•  Sun  ONE  Directory  Server 

•  Sun  ONE  Identity  Server 

The  fastest  road  to  leveraging  and 
protecting  your  corporate  assets. 


DEPLOY  SERVICES 
•  Solaris  Operating  Environment 

The  fastest  road  to  deploying 
Java  and  XML-based  services 
quickly  and  reliably. 


NEED  DIRECTIONS? 
REGISTER  TODAY 

for  our  exclusive 
Web  seminar  on  the 
importance  of 
open  standards  in 
Web  services. 
www.sun.com/stayopen 
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News 

■  8  AirFiber  adds  backup  to  optical  gear. 

■  8  Start-up  Gemplex  offers  VPN  options. 

■  10  Microsoft  users  tired  of  patch  management  headaches. 

■  10  Volera  steps  up  enterprise  GDN  offering. 

■  18  Sigaba  secures  server  transactions. 

■  18  Smarts  manages  app.  delivery  systems. 


Infrastructure 

■  21  MasterCard  pushing  IP- 
based  BankNet  as  alternative  to 
X.25  abroad. 

■  21  Coalsere  sets  up  for  storage 
automation. 

■  22  Dave  Kearns:  Larry  got 

it  right. 

NetWorker 

■  25  Adventures  in  Bluetooth. 


Enterprise 

Applications 

■  33  Honeynet  Project  hopes  to 
sting  hackers. 

■  33  Enigma  software  helps  U.S. 
Navy  pare  down  its  paper  stash. 

■  34  Configuresoft  boosts  admin¬ 
istrative  controls. 

■  34  Marimba  strengthens  its 
desktop  management  suite. 

■  36  Scott  Bradner:  Instant 
messaging  —  problems  of  success. 

■  41  Special  Focus:  LDAP: 
Improving  access  to  directory 
applications. 

Service  Providers 

■  45  XO  launches  new  Ethernet 
options. 

■  45  Teleglobe  unifies  its  managed 
data  services. 

■  46  Johna  Till  Johnson: 

IP  VPNs:  Different  flavors  for  differ¬ 
ent  tastes. 


The  Edge 

■  47  Avici  takes  peering,  DoS 
defense  to  the  edge. 

■  47  NextHop  scales  routing 
software. 

Technology  Update 

■  49  Traffic  shapers  ease  WAN 
congestion. 

■  49  Steve  Blass:  Ask  Dr 

Internet. 

■  50  Mark  Gibbs:  Running 
down  the  Web  services  checklist. 

■  50  Keith  Shaw:  Linux-based 
PDA  is  pretty  Sharp. 

Opinions 

■  52  Editorial:  ILabs  testing 
sets  stage  for  N+l  2002. 

■  53  Sandra  Gittlen:  For 

storage,  continuity  is  king. 

■  53  Daniel  Briere  and 
Russ  McGuire:  Gig-E,  G-PON, 
Gee-Whiz. 

■  74  Backspin:  <My  brain 
hurts./> 

■  74  'Net  Buzz: 

BookCrossing.com:  An  online  haven 
for  book  lovers  with  heart. 


Management 

Strategies 

■  60  Negotiating  hardware  main¬ 
tenance:  Critical  needs,  available 
resources  and  past  experience  help 
executives  justify  service  costs. 


Jim  Olson  got  stuck  with  a  sup¬ 
port  bill  when  his  hardware 
maintenance  provider  was 
unable  to  upgrade  to  a  VAX. 


Features 


Face-Off 

Should  vendors  be  liable  for  security  flaws  in  their  software? 

Page  51. 

Review 

Laptop  backup:  We  check  out  four  tools  that  automate  the 
tedious  task  of  backing  up  valuable  data  stored  on  laptop 
devices.  Page  55. 


CH  Bruce  Schneier,  left,  and  Harris  Miller 
%3  I  debate  whether  vendors  should  be 
accountable  for  vulnerable  products. 
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Review 

Dantz  Development’s  Retrospect  Server  Edition  5.6  provides  a  unique  way  to  back  up  data  on 
servers  and  clients.  Page  59. 
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Forums 


Chat  room  blocks? 

Shaun  D.  seeks  advice  on  using  Border  Manager  to  block  users  from 
chat  rooms.  Got  any? 

DocFinder:  9042 

And  what  about  Internet  services . . . 

Meanwhile,  Sami  is  looking  for  suggestions  on  how  to  keep  certain  users 
from  accessing  certain  Internet  services  at  specific  times.  Something  to 
set  on  his  firewall? 

DocFinder:  9043 

Settings  help 

Neil  needs  help  on  distributing  appearance  settings  to  a  300-plus 
Windows  2000  network.  Suggestions? 

DocFinder:  9044 

Interactive 


Columnists 

Compendium 

Classic  course 

Fusion  Executive  Editor  Adam  Gaffin  looks  at  one  man’s 
effort  to  set  up  a  library  or  museum  of  “classic  software 
products"  before  they're  forgotten. 

DocFinder:  9046 

Help  Desk 

Firewall  recommendations 

Columnist  Ron  Nutter  offers  a  reader  advice  on  whether  one 
firewall  is  enough. 

DocFinder:  9047 

SOHO  Tech 

Three  ways  to  safer  files 

New  Net  .Worker  columnist  James  Gaskin  offers  methods  for 
keeping  files  nearby,  easy  to  find  and  safe. 

DocFinder:  9048 


Products  your  peers  love 

Two  new  recruits  have  joined  the  ranks  of  our  reader  review  program, 
Tost  Pilots.  This  week,  Test  Pilot  Mets  Fan  gives  a  5  out  of  5  to  Orinoco's 
PC  Gold  Card  and  Wireless  Access  Point,  saying  it  improved  the  speed 
and  reliability  of  his  company's  wireless  net.  Test  Pilot  LanMover  reviewed 
NetGear  FS105  fast  Ethernet  Switch,  rating  it  a  5. 

DocFinder:  9045 
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Wireless  ready? 

Is  your  network  ready  for  wireless?  Find  out  with  our  free 
Tech  Update  "Integrating  and  managing  wireless  in  your  net 
work  event  DocFinder:  8546 
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We’ve  made  it  easy  to  access  articles  and 
resources  online.  Simply  enter  the  four-digit 
DocFinder  number  in  the  search  box  on  the 
home  page,  and  you’ll  jump  directly  to  the 
requested  information. 
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tiple  vendors.  WS-I  is  a  consortium  of  technology  companies  bent  on  standardizing  a 
method  for  delivering  software  and  services  over  the  Internet.The  group  formed  in  early 
February  in  an  effort  to  devise  testing  tools  and  standard  documentation  to  let  competing 
vendors  ensure  that  Web  services  software  is  compatible.  WS-1  includes  technology  heavy¬ 
weights  Microsoft,  IBM,  Intel,  Hewlett-Packard  and  BEA  Systems. 

FGG  gives  flight  to  satellite  services 

■  The  Federal  Communications  Commission  last  week  granted  seven  companies  per¬ 
mission  to  offer  services  such  as  broadband  Internet  over  satellites.The  companies  were 
given  licenses  to  offer  satellite  services  over  shared  Ku-band  frequencies  (10.7  GHz 
through  14.5  GHz).  The  FCC  granted  licenses  to  Hughes  Electronics,  Boeing,  Teledesic, 
Virtual  Geosatellite,  Denali  Telecom,  SkyBridge  and  Loral  Space  &  Communications. The 
FCC  also  approved  a  sharing  method  for  orbiting  satellites  that  would  address  the  prob¬ 
lem  of  interference  between  the  satellites. 


IETF  blesses  SNMPv3 

■  The  Internet  Engineering  Task  Force  Steering  Group  recently 
approved  Version  3  of  the  Simple  Network  Management  Protocol 
(SNMPv3)  as  a  full  standard. The  1ESG  also  moved  SNMPv3’s  pre¬ 
decessors,  SNMPvl  and  SNMPv2,  to  historical  status  —  meaning 
there  will  be  no  more  development  on  those  standards.  SNMPv3 
contains  additional  security  and  authentication  features  that  pro¬ 
vide  data  origin  authentication,  data  integrity  checks,  timeliness 
indicators  and  encryption  to  protect  against  threats  such  as  mas¬ 
querade,  modification  of  information,  message  stream  modifica¬ 
tion  and  disclosure.  Jeff  Case,  an  original  author  of  SNMP  and  CTO 
at  SNMP  Research,  a  developer  and  distributor  of  management 
protocols,  says  the  IESG  s  decisions  may  hasten  adoption  of  the 
more  secure  SNMP  “This  eliminates  any  mixed 
messages  coming  from  the  standards  commu¬ 
nity,”  Case  says. 

Diffie  to  head  new  Sun  security  office 

■  Sun  has  formed  the  new  Sun  Global  Security  Program  Office 
intended  to  raise  Sun’s  profile  on  computer  security  matters. 

Whitfield  Diffie,  Sun’s  well-known  cryptography  expert  and  an 
outspoken  critic  of  restrictive  encryption  policies  by  govern¬ 
ments  here  and  abroad,  has  been  given  the  title  of  chief  secu¬ 
rity  officer  for  this  new  division.  Its  goals  include  improving 
communications  between  customers  and  business  partners 
about  Sun’s  security  products  and  expanding  Sun’s  relation¬ 
ships  with  security  organizations. 

Hitachi  fires  back  at  EMC 

■  A  week  after  being  accused  of  infringing  six  patents  that  EMC 
owns,  Hitachi  has  filed  its  own  lawsuit  in  a  U.S.  District  Court  seek¬ 
ing  damages  against  EMC  for  the  infringement  of  eight  patents. 

The  complaint,  filed  in  the  Western  District  of  Oklahoma,  con¬ 
tends  that  certain  EMC  data  storage  systems,  including  products 
in  EMC’s  Symmetrix  and  Clariion  product  lines,  infringe  on 
patents  owned  by  Hitachi,  based  in  Tokyo,  and  Hitachi  Computer 
Products  America.  Representatives  from  Hitachi  and  EMC  could 
not  immediately  be  reached  for  comment.  EMC  recently  filed 
suit  in  the  U.S.  District  Court  in  Worcester,  Mass., seeking  damages 
for  copyright  infringement  and  requesting  in  a  separate  com¬ 
plaint  that  the  International  Trade  Commission  block  Hitachi 
from  importing  the  infringing  products  into  the  U.S. 

Web  services  group  cites  progress 

■  AT&T,  Proctor  &  Gamble  and  Sabre  have  joined  the  Web 
Services  Interoperability  Organization,  the  group  announced  last 
week  during  a  two-day  meeting  of  member  companies  in  San 
Francisco. WS-I  also  set  a  third-quarter  release  time  for  the  first  set 
of  industry  recommendations  and  example  applications  for 
making  Web  services  work  smoothly  between  software  from  mul- 


Federal  lab  buys  Linux-based  supercomputer 

■  The  U.S.  Department  of  Energy’s  Pacific  Northwest  National  Laboratory  has  ordered  a 
$24.5  million  Hewlett-Packard  supercomputer  that  runs  Linux  for  its  facility  in  Richland, 
Wash.  Scientists  will  use  the  computer  to  study  chemical  problems  in  life  sciences,  ma¬ 
terial  design,  atmospheric  chemistry  and  combustion. The  computer  consists  of  1,400  of 
Intel’s  next-generation  Itanium  processors, code-named  McKinley  and  Madison.The  com¬ 
puter  will  have  1.8  terabytes  of  memory  and  170  terabytes  of  disk  space. The  computer 
should  reach  processing  speeds  of  8.3  teraflops  (8.3  trillion  floating  point  operations  per 
second)  at  peak  performance,  making  it  the  most  powerful  Linux  computer  in  the  world, 
HP  says. 

IBM  won't  charge  for  e-business  XML 

■  IBM  last  week  said  it  will  not  charge  royalties  on  its  patented  technology  within  the 
e-business  XML  or  ebXML  standard.  In  March,  IBM  contacted  the  Organization  for  the 
Advancement  of  Structured  Information  Standards,  in  Billerica,  Mass.,  to  say  it  has  one 
patent  and  a  patent  pending  on  technology  it  had  developed  for  the  standard, says  Carol 
Geyer,  director  of  communication  for  OASIS.  IBM  says  it  will  let  that  technology  be  used 
for  free.'This  is  very  good  news, "Geyer  says.  IBM  could  have  chosen  to  charge  a  “reason¬ 


able  or  nondiscriminatory”  royalty  on  its  patents,  which  cover  some  of  the  fundamental 
parts  of  the  ebXML  standard. 


Thi  GoodTheBadTheUgly 

Net  for  victims.  Grime  victims 

can  now  be  kept  up  to  date  on  their 
cases  through  a  new  database 
system  the  Justice  Department 
has  established.  The  Victim 
Notification  System  notifies 
victims  and  their  families  of 
each  step  in  a  case  —  from 
arrest  through  imprisonment 
— through  letter,  e-mail,  fax 
or  pager, 

Forgot  to  study. 

That’s  the  best  that  can  be  said  for 
Jerry  Sanders,  CEO  of  chipmaker 
Advanced  Micro  Devices,  who  as  a 
witness  for  Microsoft  last  week  admitted 
he  had  not  read  the  antitrust  sanctions  that 
the  software  giant  is  appealing.  Sanders'  reason 
for  being  on  the  stand  was  to  call  those  sanctions 
bad  for  the  industry.  > 

Pickle  for  Google.  German  railway  operator  Deutsche  Bahn  is  threatening  to  sue 
Google  because  the  company’s  search  engine  provides  links  to  a  Web  site  that  offers  instructions 
on  how  to  sabotage  railway  systems.  Deutsche  Bahn  recently  sent  letters  to  search  engine 
operators  asking  them  to  remove  links  to  two  stories  from  the  German-language  publication  Radikal, 
which  has  been  outlawed  in  Germany.  Google  had  no  public  comment. 
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get  NetWare  6. 

now  your  Network 

is  just  a  browser  away. 

Need  access  from  Australia?  Want  to  print  from  Prague?  Get  the  freedom  of  NetWare®  6.  As  part  of  Novell’s  one  Net 
vision,  NetWare  6  lets  your  users  have  access  to  their  file,  print  and  other  storage  resources  from  any  browser  in  the  world, 
anytime.  So  no  more  lugging  laptops  to  Latin  America.  All  they’ll  need  is  any  computer  with  an  Internet  connection. 
That’s  it.  And  that’s  the  beauty  of  one  Net.  So  take  this  as  a  sign  and  visit  www.novell.com/netware6  to  learn  more. 
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AirFiber  adds  backup  to  optical  gear 

Redundant  devices  can  reduce  lost  links. 


■  BY  TIM  GREENE 

SAN  DIEGO  —  AirFiber  says  it 
has  overcome  a  major  obstacle 
to  free-space  optics,  or  the  send¬ 
ing  of  data  across  open  space 
using  lasers:  What  happens  if  the 
beam  is  blocked  or  the  equip¬ 
ment  fails? 

The  company  this  week  is  in¬ 
troducing  a  transmitter/receiver 
called  AirFiber  5800  that  can  be 
configured  so  if  a  flock  of  birds 
or  heavy  rain  disrupts  the  beam, 
and  hence  traffic,  between  two 
devices,  another  pair  takes  over 
without  losing  or  delaying  data 
transmission. 

Free-space  optics  (FSO)  is 
optical  technology  that  does 
not  require  optical  fiber  and 
provides  high-speed  connec¬ 
tions  between  sites  that  have  no 
physical  optical  fiber  links  or 
between  sites  where  it  would  be 
difficult  and  expensive  to  install 
them. 

FSO  devices  are  mounted  on 


buildings  or  inside  windows  and 
pointed  at  each  other  to  estab¬ 
lish  connections.  Competing 
vendors  include  Aoptix,  fSona, 
LightPointe,  Optical  Access, 
quantumBeam  and  TeraBeam. 
These  others  do  not  support  the 
type  of  backup  AirFiber  is  intro¬ 
ducing,  according  to  Lindsay 
Schroth,  an  analyst  with  The 
Yankee  Group. 

Makers  of  such  equipment  say 
the  lasers  that  carry  network  traf¬ 
fic  from  point  to  point  can  beam 
data  at  speeds  ranging  up  to  2.5G 
bit/sec  and  over  distances  up  to 
about  three  miles, although  speed 
and  reliability  drop  with  distance. 

The  beams  are  also  affected  by 
fog,  rain  and  snow,  which  can  dis¬ 
perse  the  signals,  and  flights  of 
birds  that  can  momentarily 
block  the  beams. 

In  the  past,  such  disruptions 
resulted  in  gaps  of  service  that 
were  tolerated  or,  in  the  case  of 
some  vendors,  backed  up  by 
slower  radio-frequency  connec¬ 


Bird-proof  beaming 

AirFiber’s  redundant  5800  free-space  lasers  constantly 
monitor  the  status  of  the  active  link  and  fail  over  to  the  back¬ 
up  if  a  unit  fails  or  birds  disrupt  the  signal. 


Office  building  Office  building 


tions.  But  redundancy  is  pricey 
because  users  have  to  buy 
twice  the  amount  of  gear, 
Schroth  says. 

AirFiber  says  the  5800  also  in¬ 
cludes  features  to  increase  perfor¬ 
mance  and  reliability  to  the  point 
that,  unlike  today  providers  could 
offer  service-level  agreements  on 
services  that  the  gear  supports. 

These  include  having  the  laser 


inside  the  casing  of  the  device 
and  shooting  the  beam  at  a 
receiver  by  bouncing  it  off  an 
internal  mirror,  protecting  the 
laser’s  lenses  from  water  droplets 
that  could  disperse  signals. 

The  5800  also  includes  a  fea¬ 
ture  known  as  active  tracking 
that  guards  against  the  beams’ 
drifting  off  target.  The  feature 
periodically  adjusts  the  aim  of 


the  lasers  to  ensure  that  the  cen¬ 
ter  of  the  beam  hits  the  center 
of  the  receiver. 

To  reduce  the  support  gear  the 
devices  require,  they  support  a 
management  channel  on  the 
optical  path  itself,  eliminating 
need  for  a  separate  manage¬ 
ment  network. 

FSO  gear  can  prove  reliable 
without  these  features,  says 
Thomas  Gifford,  owner  of  Xfac- 
tor  Multimedia  in  Seattle,  which 
uses  a  fiberless  optical  service 
from  TeraBeam.  The  link  hasn’t 
failed  in  two  years,  he  says. 

Vendors  also  can  boost  reliabil¬ 
ity  by  engineering  links  that  are 
short  enough  so  the  lasers  can 
power  through  potentially  dis¬ 
ruptive  weather  and  widening 
the  focus  of  the  beam  to  avoid 
drift  problems,  explains  Dave 
Dunphy,  an  analyst  with  Current 
Analysis. 

AirFiber  5800  is  available  now 
for  $25,000  per  pair  that  supports 
a  155M  bit/sec  link.B 


Start-up  Gemplex  kicks  off  IP  VPN  offerings 


■  BY  DENISE  PAPPALARDO 

VIENNA, VA. —  Gemplex  is  set 
to  launch  IP  VPN  services  this 
week  that  will  let  users  set  up 
secure  IP  networks  in  37  coun¬ 
tries. 

The  start-up  service  provider  is 
targeting  small  and  midsize  busi¬ 
nesses  that  it  says  are  under¬ 
served  by  the  large  multinational 
service  providers  such  as  Equant, 
lnfonet  and  WorldCom. 

“We’re  talking  about  businesses 
that  bring  in  $200  million  and 
$500  million  in  annual  revenue 
and  have  five  to  50  dedicated 
sites,”  says  Hemant  Kanakia,  Gem¬ 
plex  founder  and  CEO. 

Although  Gemplex  has  only 
been  around  18  months,  the  com¬ 
pany  is  launching  its  initial  IP 
VPN  services  in  530  cities.  The 
suite  of  services  includes  Private 
IP  VPN,  Flexible  IP  VPN  and 
Mobile  IP  VPN  offerings.The  com¬ 
pany  can  offer  these  services  in 
so  many  cities  because  it  is  not 
deploying  its  own  fiber  or  build¬ 
ing  its  own  physical  points  of 
presence. 

Instead,  Gemplex  is  leasing  net¬ 
work  capacity  from  international 
service  providers  such  as  Global 


Crossing  to  connect  its  network 
operating  center  in  Virginia  with 
its  leased  POPs  around  the  globe. 
Gemplex  also  is  collocating  its 
switching  gear  and  teaming  with 
local  carriers  around  the  world  to 
establish  POPs. 

“This  is  a  tough  market  for  ser¬ 
vice  providers  these  days,”  says 
Jeff  Phillips, director  of  consulting 
atTeleChoice.Gemplex’s  business 
model  may  prove  successful  if  it 
can  get  enough  customers  on  its 
network  and  manage  its  partners, 
he  says. 

But  teaming  up  with  other  ser¬ 
vice  providers  is  risky  The  major¬ 
ity  of  Gemplex’s  international 
fiber  is  leased  from  Global  Cross¬ 
ing,  which  filed  for  bankruptcy 
protection  in  January  and  has 
been  under  Securities  and  Ex¬ 
change  Commission  scrutiny 

“Within  the  next  30  days  we  will 
have  migrated  the  majority  of  our 
traffic  to  another  provider’s  net¬ 
work,”  Kanakia  says.  While  Gem¬ 
plex  says  service  quality  has  not 
suffered.it  is  making  the  switch  to 
ensure  service  continuity 

Phillips  says  that  while  Global 
Crossing  and  other  large  fiber- 
rich  carriers  are  having  financial 
trouble,  there  are  typically  no 


PROFILE:  GEMPLEX 


Location:  Vienna,  Va. 


Founded:  2000 


Business:  IP  VPN  services 
in  37  countries,  500  cities. 


Management:  Hemant 
Kanakia,  CEO  and  chairman; 
Gian  Dilawari,  COO. 


Financing:  $28  million  from 
Canaan  Partners,  Invesco. 


Competitors:  Equant, 
Teleglobe,  lnfonet,  AT&T, 
WorldCom. 


Target  Customers:  Small 

and  midsize  business  users. 


problems  with  their  networks. 

Gemplex  has  deployed  Juniper 
M20-series  switches  that  support 
Multi-protocol  Label  Switching 
(MPLS)  within  local  switching 
facilities  of  carriers  around  the 
globe.  Gemplex  connects  its 
switches  via  its  global  leased  net¬ 
work,  which  is  managed  and 
monitored  from  the  company’s 
network  operating  center. 

The  company  says  it  avoids 
teaming  with  incumbent  local 


carriers  and  instead  teams  with 
competitive  local  service  pro¬ 
viders  and  ISPs  that  also 
sell  Gemplex’s  IP  VPN  ser¬ 
vices  locally 

The  company’s  Private  IP 
VPN  service  is  a  fully  man¬ 
aged  dedicated,  network-based 
offer.  Customers  connect  to  Gem¬ 
plex’s  network  via  dedicated  T-l, 
E-l  orT-3  lines.  Customers  are  not 
required  to  use  a  specific  vendor’s 
router  at  their  customer  premises 
to  connect  to  the  service  because 
all  the  smarts  and  traffic  prioritiza¬ 
tion  are  supported  within  the  net¬ 
work,  Kanakia  says. 

Gemplex  says  its  service  is  an 
alternative  to  frame  relay  for 
small  and  midsize  businesses  that 
may  find  frame  too  expensive. 
“Our  service,  supporting  a  30site 
VPN,  is  about  50%  cheaper  than  a 
fully  meshed  frame  relay  net¬ 
work,”  Kanakia  says. 

Private  IP  VPN  service  comes 
with  a  standard  service-level 
agreement  (SLA)  that  guaran¬ 
tees  round-trip  latency  will  not 
exceed  60  msec  in  the  U.S.,  25 
msec  in  Europe,  120  msec  in  Asia 
and  70  msec  for  trans-Atlantic 
traffic.  Gemplex  also  guarantees 
99.99%  network  availability  and 


minimum  packet  loss  that  varies 
depending  on  country  Customers 
in  the  U.S.  are  guaranteed  packet 
loss  will  not  exceed  1%,  while  cus¬ 
tomers  in  India  are  guaranteed 
packet  loss  will  not  exceed  3%. 

Gemplex’s  Flexible  IP  VPN  is  a 
CPE-based  service  that  lets  cus¬ 
tomers  use  the  Internet  to  con¬ 
nect  to  Gemplex’s  network.  This 
service  uses  IP  Security  (IPSec) 
tunneling  between  the  user’s 
router  and  Gemplex’s  Juniper 
box  for  secure  connectivity  over 
the  Internet.  Flexible  IP  VPN  ser¬ 
vice  also  has  a  standard  SLA  that 
guarantees  round-trip  latency  will 
not  exceed  85  msec  in  the  U.S.,50 
msec  in  Europe,  145  msec  in  Asia 
and  95  msec  for  trans-Atlantic 
traffic.The  same  minimum  packet 
loss  guarantee  applies,  but  the 
network  availability  guarantee 
does  not  because  users  will  con¬ 
nect  to  Gemplex’s  network  via  a 
third-party  ISP 

Mobile  IP  VPN  lets  remote  users 
connect  to  Gemplex’s  network 
using  a  Cisco  software  client  de¬ 
ployed  on  individual  PCs.  This 
client  establishes  an  IPSec  tunnel 
between  the  user  and  Gemplex’s 
network.  This  service  does  not 
come  with  a  standard  SLA.  ■ 


At  CDW,  we  know  that  every  day,  you're  asked  to  do  the  impossible. 


you  can  count  on  us  for  brand  name  products,  the  way  you  need 
them,  when  you  need  them.  To  learn  more,  call  or  visit  us  online. 
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Microsoft  users  tired  of  patch  mgmt.  headaches 


■  BY  JOHN  FONTANA 

IT  executives  are  fed  up  with 
Microsoft’s  kludge  of  tools  to 
manage  and  install  the  numer¬ 
ous  patches  and  hotfixes  it  issues 
and  say  the  company  must  deliv¬ 
er  one  management  tool  that 
works  reliably  and  consistently 
or  companies  will  never  have 
secure  systems. 

Frustrations  are  running  high 
after  two  incidents  showed  Micro¬ 
soft’s  patch-management  tools 
sometimes  offer  conflicting  data 
that  could  leave  systems  vulnera¬ 
ble  to  security  breeches.That  riles 
IT  executives  who  often  hear 
from  Microsoft  that  certain  secu¬ 
rity  breeches  can  be  avoided  if 
systems  are  properly  patched. 

“Someone  needs  to  get  serious 
about  patch  management  over 
at  Microsoft,  because  IT  adminis¬ 
trators  have  become  the  losers,” 
says  Russ  Cooper,  editor  of  the 
NT  BugTraq  Web  site  and  the  sur¬ 
geon  general  forTruSecure. 

Microsoft  has  issued  20  secur¬ 
ity  and  hotfix  patches  this  year. 

Cooper  says  Microsoft  needs  to 
provide  an  accurate  and  reliable 
way  to  patch  systems  instead  of 
the  current  mishmash  of  ser¬ 
vices,  tools  and  download  sites. 
Short  of  that,  experts  say, 
Microsoft’s  recent  Trustworthy 
Computing  initiative  to  develop 
secure  code  will  be  useless  to  IT. 

Cooper  says  the  answer  doesn’t 
lie  with  Windows  Update  Corp¬ 
orate  Edition,  scheduled  to  ship 
this  spring,  because  it  has  the 
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HP  management  suffered 
embarrassment  recently 
when  a  message  from 
CEO  Carly  Fiorina  to  CFO 
BobWayman  regarding 
merger  tactics  was  leaked 
to  the  press.  What  form 
did  the  message  take? 

Answer  this  and  nine  additionai  questions 
onine  and  you  coiid  whn  S500!  Visit 

Network  World  Fvstoo  and  enter  2349 
in  the  Search  box. 

vww.nwfjsion.com 


Patch  tools 

Microsoft  offers  a  number  of  tools  for  patch 
management,  but  users  say  the  mishmash  causes  as 
many  problems  as  it  solves.  Here’s  a  sampling: 


Windows  Update:  A  service  from  Microsoft  that  checks  for 
installed  software  and  missing  updates  and 
patches.  Patches  are  automatically  installed. 

Windows  Update,  A  version  of  Windows  Update  that  runs  within 

Corporate  a  corporate  network.  IT  executives  can  apply 

Edition:  their  own  set  of  policies  for  controlling  the 

rollout  of  patches. 

HFNetCheck:  A  command-line  tool  that  scans  systems  to 

ensure  that  recommended  security  hotfixes 
and  patches  are  up  to  date  based  on  a  list 
available  from  Microsoft. 

Baseline  Scans  one  or  more  Windows-based  computers 

Security  for  common  security  misconfigurations. 

Analyzer:  Checks  that  recommended  security  hotfixes 

and  patches  are  up  to  date. 


same  accuracy  problems  as  the 
Microsoft  service  called  Win¬ 
dows  Update  —  it  can’t  guaran¬ 
tee  successful  patch  installation. 

Windows  Update  is  one  of  two 
tools  at  the  heart  of  the  patch- 
management  mess.The  other  tool 
is  HFNetCheck,  which  scans  sys¬ 
tems  for  security  patches.  HFNet¬ 
Check  is  integrated  with  Micro¬ 
soft’s  Baseline  Security  Analyzer. 

The  most  recent  issue  occurred 
this  month  with  patch  MS02-018, 
which  was  for  Internet  Inform¬ 
ation  Server. The  patch  contained 
a  file  with  the  same  version  num¬ 
ber  —  but  a  different  date  —  as  a 
file  from  a  previous  patch,  MS02- 
012  (which  addressed  SMTP 
issues). 

Windows  Update  didn’t  over¬ 
write  the  MS02-012  file,  but  re¬ 
ported  the  patch  was  successfully 
installed.  A  subsequent  scan  using 
HFNetCheck  reported  a  problem 
with  the  patch  installation.  Also,  if 
the  MS02-018  patch  was  installed 
from  a  link  provided  in  a  security 
bulletin  instead  of  through  Win¬ 
dows  Update,  the  MS02-012  file 
was  overwritten.  Users  had  no 
idea  which  version  of  the  file  was 
correct. 

In  a  February  incident,  the 
tools  offered  conflicting  data 
when  patches  were  partially 


changed,  but  the  version  num¬ 
bers  were  not  altered  when 
using  the  Windows  Update  ser¬ 
vice.  In  that  case,  HFNetCheck 
reported  that  the  patches  were 
not  the  most  current  version, 
but  they  were. 

“I  can’t  necessarily  trust  what 
HFNetCheck  or  Windows  Update 
tell  me  I  need,”  says  Paul  Calvi, 
director  of  IT  for  Annual  Re¬ 
views.  “Ideally,  Microsoft  would 
produce  a  single  patch-manage¬ 
ment  tool  for  all  its  software  pro¬ 
ducts  that  would  manage, deploy 
and  report  on  all  patches.” 

But  Calvi  says  he  needs  such 
a  tool  “yesterday"  and  he  wants 
it  from  Microsoft.  Currently  he 
uses  software  from  St.  Bernard 
Software.  Other  patch-manage¬ 
ment  vendors  include  Shavlik 
Technologies,  which  sells  a  pro¬ 
fessional  version  of  HFNet¬ 
Check;  Configuresoft;  Ecora 
and  PatchLink. 

Whatever  Microsoft  does,  ex¬ 
perts  say,  it  has  to  resolve  three 
problems:  too  many  patch-man¬ 
agement  tools  that  aren’t  in  sync; 
too  many  vehicles  for  delivering 
patches;  and  inconsistent  patch- 
installation  technologies. 

Microsoft  says  it  is  working  on 
consistency  and  automation. 

“We  are  looking  at  how  do  we 


get  HFNetCheck  to  accurately 
reflect  what  Windows  Update  is 
doing,”  says  Steve  Lipner,  direc¬ 
tor  of  security  assurance  at 
Microsoft.  “What  will  take 
longer  is  getting  to  an  overall 
integrated  or  common  patch 
technology.” 

Some  users  say  there  should 
be  a  suite  of  tools  that  get  data 
from  a  single  Microsoft  source. 
Steve  Sheldon,  a  Microsoft  certi¬ 


fied  systems  engineer  for  a  large 
securities  vendor  he  asked  not 
be  named, says  the  tools  need  to 
be  integrated  with  Active 
Directory  so  when  a  machine  is 
added  into  the  directory  it  is 
scanned  and  the  necessary  are 
patches  applied. “The  key  is  ease 
of  use  and  automation.  The 
more  [manual]  work  you  have 
to  do,  the  more  likely  something 
will  be  missed.” ■ 


Volera  steps  up  enterprise  CDN  offering 


■  BY  JENNIFER  MEARS 

SAN  JOSE  — Volera  this  week  is 
announcing  upgrades  to  its 
Velocity  content  delivery  net¬ 
work  package  aimed  at  making 
it  easier  for  businesses  to  man¬ 
age,  secure  and  deploy  Web- 
based  applications. 

The  market  for  enterprise- 
focused  content  delivery  prod¬ 
ucts  is  growing  as  businesses 
look  to  improve  network  perfor¬ 
mance  and  cut  costs.  Businesses 
consider  building  and  managing 
their  own  CDNs  or  enterprise 
CDNs  should  think  about  secur¬ 
ity,  management  and  ease  of 
deployment,  analysts  say. 

Volera,  a  wholly  owned  subsid¬ 
iary  of  Novell,  introduced  its 
Velocity  CDN  package  last  year 
to  help  businesses  deploy  and 
manage  CDNs.Velocity  CDN  con¬ 
sists  of  Volera 's  Excelerator  cach¬ 
ing  software,  its  System  Con¬ 
troller  and  Content  Controller 
management  software,  and  Con- 


Hot  CDN  products 

Businesses  are  deploy¬ 
ing  more  CDN  hardware 
and  software  to  improve 
network  performance. 
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tent  Accountant  software,  which 
lets  businesses  track  CDN  usage 
for  billing  and  content  delivery 
The  software  can  run  on  any  Intel- 
based  hardware  platform. 

“The  trend  is  that  a  lot  of  [the 
Web  acceleration  companies], 
Volera  included,  are  trying  to 
integrate  or  at  least  come  up 


with  an  offering  that  integrates 
several  different  features  and 
that  also  allows  for  ease  of  use, 
ease  of  deployment  and  man¬ 
agement,”  says  Maximilian  Flisi, 
an  analyst  at  IDC.  Volera  com¬ 
petes  with  Inktomi,  InfoLibria, 
CacheFlow,  Cisco  and  Network 
Appliance  in  the  CDN  market 

The  upgrades  to  Velocity  CDN, 
include  the  latest  releases  of 
Volera’s  software-based  caching 
package,  Excelerator  2.2  and 
Media  Excelerator  1.2,  and  its 
management  products.  System 
Controller  1.2,  Content  Controller 
1.2  and  Content  Accountant  1.2. 

Specific  features  within  the 
upgraded  Velocity  CDN  include: 

•  Centralized  management  of 
security  policies  so  that  users 
can  set  security  rules  such  as 
authentication  and  access  con¬ 
trol  within  Velocity  CDN  and 
have  them  enforced  at  each 
Excelerator.  The  upgrade  also 
includes  improved  URL  and  con- 
tent-filtering  features. 


•  Virtual  private  CDNs,  which 
let  customers  configure  a  CDN 
and  then  authorize  departments 
to  publish  and  manage  their 
own  contentv 

•  Improved  streaming  media 
management  and  delivery,  sup¬ 
porting  IP  multicasts  and  more 
efficent  use  of  bandwidth  to  de¬ 
liver  rich  media  applications. 

W.  L.  Gore  &  Associates  of 
Newark,  Del.,  best  known  for  its 
Gore-Tex  fabric,  has  beta-tested 
Velocity  CDN.  Richard  Sun,  net¬ 
work  systems  engineer  at  the 
company,  says  he’s  interested  in 
the  authentication  and  access 
control  that  can  be  integrated 
into  the  Novell  Directory  Services 
his  network  uses. 

“We  also  like  the  fact  that  we 
can  integrate  filtering  into  this 
product  so  we  can  block  ques¬ 
tionable  sites,”  he  says. 

The  upgrades  to  Velocity  CDN 
are  scheduled  to  ship  April  30. 
Pricing  has  not  yet  been 
finalized  ■ 
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HP  Blade  servers  are  here. 

The  most  flexible  way  to 
manage  your  infrastructure. 

Radical  simplicity.  Extraordinary  flexibility  HP  Blade  servers  are  about 
to  forever  change  the  way  you  look  at,  manage  and,  yes,  even  maneuver 
through  your  data  center. 

They  are  complete,  ultra-dense  servers  on  single  modular  cards  — including 
processor,  memory  and  all  network  connections  — that  come  with  a  choice  of 
Linux,  Windows'  or  HP-UX. 

Easier  to  manage  and  maintain. 

This  elegant,  standards-based  design  allows  you  to  easily  combine  server, 
storage,  networking,  appliance  and  management  blades  in  the  same  38-slot 
chassis,  then  reconfigure  on  the  fly  to  handle  expanding  or  contracting  workloads. 

Each  blade  connects  to  the  network  infrastructure  already  embedded  in  the 
chassis,  dramatically  cutting  the  number  of  cables  needed.  With  far  fewer  cables 
to  fuss  with,  they're  far  easier  to  manage  and  maintain  than  conventional  servers. 
Even  management  is  shared.  Which  means  all  38  blades  can  be  viewed  and 
monitored  as  a  single  system. 

More  efficient  and  reliable. 

Since  all  blades  in  the  chassis  share  the  same  power  and  cooling  source, 
they're  also  more  energy  and  space  efficient.  In  fact,  you'll  find  HP  Blade  servers 
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reduce  the  typical  number  of  fans  and  power  supplies 
required  by  as  much  as  60%. 

The  reliability  advantages  of  moving  to  blades 
are  profound.  To  give  you  some  perspective,  imagine 
building  a  server  cluster  solution  that  is  comparable  to 
a  fully  loaded  HP  Blade  server  cabinet.  The  projected 
annual  failure  rate  of  the  HP  Blade  server  solution  is 
about  41%  lower  than  that  of  the  comparable  server  cluster. 

In  the  unlikely  event  that  a  blade  should  fail,  the  problem  is  isolated  in  the 
same  way  that  multiple  systems  connected  by  I/O  are  isolated  from  each  other. 

Is  your  server  as  sharp  as  a  blade? 

Servicing  a  blade  is  as  easy  as  deploying  one.  Each  blade  is  freely  accessible 
from  both  the  front  and  rear  of  the  cabinet  and  can  thus  be  replaced  at  a  moments 
notice.  Each  slot  can  be  powered  on  or  off  separately.  Hot-swap  and  hot-plug 
technology  is  implemented  throughout,  allowing  for  the  seamless  addition  or 
replacement  of  blades  while  the  rest  of  your  infrastructure  continues  to  hum. 

We  invite  you  to  read  our  technical  white  paper  on  HP  Blade  servers. 
Or,  better  yet,  talk  directly  with  one  of  our  infrastructure  specialists  to  find 
out  more  about  how  HP  Blade  servers  can  change  the 
face  of  your  business.  Give  us  a  call  at  I.800.HPASKME, 
extension  246.  Or  visit  www.hp.com/go/infrastructure. 

Infrastructure:  it  starts  with  you.  invent 
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much  of  the  money.  Other  com¬ 
mittees  have  focused  on  tighten¬ 
ing  the  security  of  federal  IT  sys¬ 
tems,  which  NIST  oversees  for  all 
but  national  security  systems. 
Lawmakers  believe  NIST  needs 
“teeth"  to  be  able  to  put  more 
pressure  on  federal  agencies. 

While  applauding  the  Hill’s 
new  focus  on  cybersecurity 
industry  trade  groups  and  net¬ 
work  security  vendors  worry  that 
NIST  could  get  too  involved  in 
determining  the  features  of  net¬ 
work  security  products.  Any  new 
certification  processes  from 
NIST  could  slow  the  delivery  of 
new  products  and  make  them 
more  expensive  for  corporate 
buyers,  industry  observers  say 

“While  we  strongly  support  the 
intent  of  these  bills  that  call  on 
NIST  to  develop  security  stan¬ 
dards,  we’re  concerned  that  this 
could  migrate  into  the  govern¬ 
ment  determining  product  stan¬ 
dards,”  says  Mario  Correa,  director 
of  Internet  and  Network  Security 
Policy  at  the  Business  Software 
Alliance  (BSA).  BSA  is  a  lobbying 
group  that  includes  IBM,  Network 
Associates  and  Novell. 

“We  want  to  make  sure  that 
NIST  creates  a  floor  [for  network 
security  products] ,  not  a  ceiling,” 
Correa  says. 

NIST,  an  arm  of  the  U.S.  Com¬ 
merce  Department, already  exerts 
major  influence  by  selecting  cry¬ 
ptography  standards  and  re¬ 
viewing  the  security  of  IT  prod¬ 
ucts  and  systems  that  the  federal 
government  buys.  Many  network 
vendors  —  including  Check  Fbint 
Software,  Cisco,  CyberGuard, 
Entrust,  Network  Associates, 
Lucent  and  Oracle  —  have  had 
their  products  certified  that  they 
meet  NIST  requirements. 

Vendors  say  any  new  security 
requirements  they  must  meet  for 
the  federal  market  will  likely  have 
a  ripple  effect  on  commercial 
offerings,  even  though  NIST’s 
guidelines  are  voluntary  for  cor¬ 
porate  IT  buyers. 

“If  NIST  is  going  to  get  more 
involved  in  security  standards,  it 
will  help  vendors  to  be  NIST-certi¬ 
fied  in  commercial  accounts," 
says  Tom  McDonough,  CEO  of 
CyberWolf  Technologies,  which 
sells  enterprise  security  manage¬ 
ment  software. 

Located  in  Gaithersburg,  Md., 
NIST's  Computer  Security  Divi¬ 
sion  consists  of  45  technologists 
and  has  an  annual  budget  of  $10 
million. 

The  division  selects  crypto¬ 
graphic  standards  and  runs  a  test¬ 


ing  program  to  ensure  IT  prod¬ 
ucts  apply  these  standards  cor¬ 
rectly.  The  division  conducts 
research  in  IT  security  and  offers 
advice  to  federal  IT  buyers  about 
evaluating  system  security. 

The  division  accredits  private 
laboratories  to  test  the  security  of 


IT  products  such  as  firewalls, 
intrusion-detection  systems  and 
database  software  under  a  pro¬ 
gram  called  Common  Criteria. 
Common  Criteria  evaluations  will 
be  mandatory  for  U.S.  national 
security  systems  purchased  after 
July  1. 

“We  get  this  question  a  lot  about 
how  our  role  is  changing  post- 
Sept.  11,”  says  Edward  Roback, 
NIST  computer  security  division 
chief.  “What  we  like  to  say  is  that 
we’re  turning  up  the  intensity’ 

One  of  NIST’s  ongoing  efforts  is 
updating  existing  guidelines  for 
how  federal  IT  managers  should 
assess  the  security  of  a  major  IT 
system.  NIST  also  is  establishing 
an  accreditation  program  for  pri¬ 
vate-sector  organizations  that 
conduct  IT  security  reviews. 

NIST  works  with  the  U.S. 
National  Security  Agency  (NSA) 
to  create  recommended  security 
targets  for  various  classes  of  IT 
products.  Since  Sept.  1 1 ,  NIST  and 
NSA  have  stepped  up  their  efforts 
to  create  security  targets  for  10 
key  technology  areas,  including 
operating  systems,  VPNs  and 
smart  cards.  Private  laboratories 
validate  whether  specific  prod¬ 
ucts  meet  these  targets. 

Some  network  security  vendors 
embrace  the  idea  of  NIST  creat¬ 
ing  security  targets  for  additional 
classes  of  IT  products. 

“I’d  like  to  see  NIST  getting 
more  money  to  develop  security 
targets  for  other  products,  includ¬ 
ing  security  management  plat¬ 
forms  like  CyberWolf’s,”  says 
Juanita  Koilpillai,  chairman  of 
CyberWolf.  Users  of  CyberWolf’s 
software,  which  coordinates 
information  from  intrusion- 
detection,  firewall  and  network 
management  systems,  include 

Get  more  information  online. 
DocFinder:  9050 
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the  Department  of  Defense  and 
the  Federal  Emergency  Man¬ 
agement  Agency. 

“One  of  the  things  our  govern¬ 
ment  customers  look  for  is  who 
has  tested  the  software  and  how 
it’s  been  evaluated,”  Koilpillai 
says.“If  NIST  has  more  funding.it 


will  make  it  easier  for  the  ven¬ 
dors  to  get  certified.” 

Steve  Bellovin,  a  computer  sec¬ 
urity  expert  with  AT&T  Labs  and 
one  of  the  directors  of  the  Inte¬ 
rnet  Engineering  Task  Force’s  Sec¬ 
urity  Area,  says  NIST  does  a  good 


Web  services 

continued  from  page  1 

will  put  standard  interfaces  on 
existing  e-mail, voice  mail  and  fax 
systems  using  Simple  Object 
Access  Protocol  (SOAP)  and 
XML.  The  latter  is  used  to  convert 
one  system’s  output  into  XML 
documents,  which  are  sent  via  a 
SOAP  message  to  another  system. 
The  receiving  system’s  Web  ser¬ 
vices  interface  converts  the 
sender’s  XML  documents  into  an 
input  it  understands,  letting  the 
two  communicate. 

If  the  university’s  pilot  works  as 
planned,  the  effort  will  go  live 
early  next  year  for  50,000  users. 

“Web  services  are  like  Lego 
blocks,”  Kouba  says.  “They  will 
enable  us  to  move  into  the  future 
without  replacing  an  entire  archi- 
tecture.”The  university  will  use  its 
existing  e-mail  servers  as  part  of 
the  new  system. 

Web  services  provide  a  flexibil¬ 
ity  that  the  university  has  never 
had  because  it  always  has  been 
locked  into  one  technology  for 
voice  mail,  one  for  e-mail  and 
one  for  fax.  Now  the  school  can 
tie  it  ail  together  without  being 
required  to  change  or  replace 
anything  as  would  be  required 
in  a  typical  monolithic  unified 
communications  system,  which 
Kouba  say  is  another  lock-in  she 
doesn’t  want. 

“Web  services  will  allow  users 
to  get  any  message  from  any¬ 
place  at  any  time  through  any 
device,"  Kouba  says.  “It  will  also 


job  of  developing  cryptographic 
standards  and  could  use  extra 
resources  to  speed  its  work  and 
keep  its  processes  open. 

“I  don’t  think  anybody  else  is 
quite  in  the  position  to  do  some 
of  these  things,"  Bellovin  says. 
“There’s  a  limited  amount  of 


expertise  in  the  world  to  design 
cryptographic  algorithms.” 

However,  Bellovin  says  NIST 
doesn’t  have  a  good  track  record 
in  establishing  broader  IT  secu¬ 
rity  standards.  As  evidence,  he 
points  to  the  lack  of  industry 


allow  us  to  have  a  single  number, 
so  you  can  reach  me  at  one  num¬ 
ber  for  my  phone,  cell  phone,  fax 
and  pager 

She  says  a  Web  portal  will  let 
users  set  rules  for  routing  their 
calls.“So  we  not  only  have  the  sin¬ 
gle-number  reach  but  it  also  gives 
us  a  call-routing  feature  we  don’t 
have  today’ 

Kouba  knows  the  desired  re¬ 
sults  will  cost  money  although 
she  won’t  know  the  exact  amount 
until  the  pilot  is  complete.  “We 
don’t  know  if  we’ll  need  one  or  15 
boxes,”  she  says.  “We  want  redun¬ 
dancy  so  we  will  double  all  the 
hardware  we  buy  It  could  be 
some  pretty  serious  money,  but  it 
is  for  a  customer  base  of  50,000.” 

She  also  says  her  network  archi¬ 
tecture  will  see  little  change, 
because  all  the  servers  will  be 
deployed  in  one  data  center,  but 
that  there  will  be  administrative 
costs  to  ensure  up-time. 

The  university  is  executing  the 
pilot  with  the  help  of  Magnet- 
Fbint,  a  Web  services  company 
that  specializes  in  creating  Web 
services  interfaces  for  communi¬ 
cation  systems. 

Web  services  technology  a  col¬ 
lection  of  standard  protocols 
based  on  XML,  is  typically  touted 
as  integration  technology  for 
e-commerce  systems.  Kouba  says 
MagnetBoint  caught  her  eye  in 
applying  Web  services  to  unify 
her  communication  systems. 

What  she  likes  about  Magnet- 
Point’s  Web  services  is  that  they 
turn  a  message  into  a  neutral 


support  for  NIST’s  Common 
Criteria  program  and  its  prede¬ 
cessor,  the  Orange  Book. 

“The  problem  that’s  inherent  to 
this  class  of  standard  is  that  the 
evaluation  process  is  time-con¬ 
suming  and  expensive,"  Bellovin 
says. “Orange  Book-evaluated  sys¬ 
tems  were  a  lot  more  expensive 
and  one  or  two  years  late.  .  .  . 
Common  Criteria  is  doing  better 
because  there  are  more  testing 
labs,  but  it’s  still  a  lengthy  evalua¬ 
tion  process.” 

Bellovin  says  to  improve  cyber¬ 
security,  vendors  need  to  take  an 
architectural  approach  to  de¬ 
signing  security  into  their  prod¬ 
ucts  —  something  that  NIST  can’t 
test. 

“The  two  biggest  issues  in  secu¬ 
rity  are  buggy  code  and  total  sys¬ 
tem  architecture,”  Bellovin  says.“If 
Common  Criteria  requires  more 
discipline  in  development  and 
results  in  less  buggy  code,  that’s 
great.  But  it’s  not  going  to  solve 
the  architectural  failures.  We  just 
don’t  know  how  to  do  that  yet.”  ■ 


object  that  is  transmitted  from  the 
sender  to  the  receiver. The  objects 
are  passed  using  SOAP  messages 
that  contain  XML  documents. 

“It  is  kind  of  like  UPS.  UPS  does¬ 
n’t  care  what  is  in  the  box,  they 
just  say  they  are  going  to  come 
pick  up  a  box  and  take  it  from  the 
sender  to  the  receiver. That’s  what 
Web  services  is  going  to  do  for 
us,”  Kouba  says. 

The  pilot  system  connects  three 
servers,  all  of  which  run  on  Sun 
hardware  and  the  Solaris  operat¬ 
ing  system: 

A  message  server  that  runs 
Sendmail,  which  was  developed 
at  UC-Berkeley  in  1981,  holds 
e-mail  and  voice  mail,  which  is 
stored  as  a  .wav  file. 

A  telephony  server  acts  as  a 
gatekeeper  between  the  phone 
system,  the  messaging  server  and 
the  third  leg  of  the  stool,  Mag- 
netPbint’s  Presence  and  Avail¬ 
ability  Server  (PAS).  PAS  is  a  col¬ 
lection  of  more  than  100  Web  ser¬ 
vices  modules  that  are  prebuilt 
interfaces  to  various  systems, 
including  e-mail,  telephony,  direc¬ 
tory,  and  calendaring  and  sched¬ 
uling. 

PAS  also  is  the  rules  and  routing 
engine,  dictating  where  a  mes¬ 
sage  is  delivered  and  to  what 
device.  Communication  between 
the  PAS  and  other  communica¬ 
tion  servers  is  handled  by  Web 
services  interfaces  using  SOAP 
and  XML 

When  a  call  comes  in  to  the  uni¬ 
versity’s  PBX,  which  is  leased  and 

See  Web  services,  page  16 


1 1  [NISTs  evaluation  process]  is  time-consuming  and 
expensive. . . .  Orange  Book-evaluated  systems  were  a  lot 
more  expensive  and  one  or  two  years  late.  9  9 
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WIRELESS  AND  MOBILE  OFFICE 


Now  you  can  use  IP  technology  to  extend  your  storage  network  by 
delivering  remote  access  to  centralized  storage  and  interconnecting 
data  centers.  You'll  benefit  by  lowering  operating  costs  through 
storage  consolidation  and  more  efficient  management  -  while 
enabling  cost-effective  metro  and  wide-area  performance.  With 


Cisco  Systems 


Cisco  AVVID  enterprise  architecture,  you  can  do  all  this  without  any  disruption.  This  standardized  enterprise 
architecture  allows  you  to  seamlessly  integrate  voice,  video,  wireless,  storage,  and  data  applications  on  a  single, 
scalable  network. This  includes  new  and  existing  technologies  alike.  Whether  you're  building  your  enterprise 
network  or  extending  it  with  Cisco  Powered  Network  services,  take  advantage  of  the  tools  below  to  get  it  done  right. 
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network  giant  has  muscled  into 
the  storage  world  over  the  past 
year  with  a  number  of  significant 
initiatives,  including: 

•  Investments  in  storage  start¬ 
ups  sucfi  as  Andiamo  Networks, 
which  is  making  a  multiprotocol 
storage  switch,  and  StoreAge 
Networking  Technologies,  a  stor¬ 
age-virtualization  vendor. 

•  Formation  of  an  internal 
Storage  Technology  Group  that  is 
on  equal  footing  with  Cisco’s  12 
other  divisions. 

•  Introduction  of  the  SN  5420 
storage  router,  which  is  meant  to 
transport  data  over  IP  using  the 
iSCSI  protocol. 

•  Release  of  the  ONS  15540 
dense  wave  division  multiplex¬ 
ing  (DWDM)  optical  switch, 
which  is  used  to  bridge  geo¬ 
graphically  separated  Fibre 
Channel  SANs. 

•  A  series  of  agreements  with 
storage  vendors  such  as  QLogic 
and  EMC  to  deliver  storage  over 
IP  and  Fibre  Channel  over  IP 
(FC1P),  which  is  used  to  bridge 
SAN  islands. 

There  also  has  been  rampant 
speculation  within  the  industry 
that  Cisco  intends  to  acquire  a 
Fibre  Channel  vendor  to  gain 
expertise  in  the  technology  and 
collect  market  share. 

Analysts  say  that  while  Cisco 


could  be  perceived  as  a  threat  to 
other  storage  vendors,  the  com¬ 
pany  still  has  a  lot  to  learn  about 
how  storage  works. 

“To  date  the  company  is  still 
trying  to  learn  to  speak  the  stor¬ 
age  lingo  and  learn  what  is 
important  to  customers  and 
what  isn’t,”  says  Steve  Duplessie, 
an  analyst  with  Enterprise  Stor¬ 


pany  will  do  well  selling  storage 
to  its  installed  base. 

“The  [FCIP]  box  may  come  in 
handy  for  disaster-recovery  sce¬ 
narios,”  says  Scott  Vieth,  systems 
administrator  for  the  Medical 
College  of  Wisconsin  in  Mad¬ 
ison.  “Since  we’re  a  Cisco  shop, 
we’d  be  inclined  to  look  at  that 
device  over  similar  devices  from 


ion  and  have  the  same  features 
as  their  storage  routers.  Recently, 
Cisco  added  features  such  as  the 
Cisco  Discovery  Protocol  (CDP), 
CiscoWorks  and  Simple  Network 
Management  Protocol  to  its  SN 
5420  Storage  Router. 

Cisco  is  interested  in  IP  and 
Fibre  Channel  SANs  because  of 
the  vast  market  opportunities 


Cisco's  storage  portfolio 

The  network  infrastructure  giant  is  shoving  its  way  into  storage  with  an  array  of  products. 


Protocols  used 

Intended  use 

Expected  ship  date 

SN  5420  storage  router 

iSCSI 

Transports  iSCSI  data  over  IP 

Shipping 

Fibre  Channel  switch 

Fibre  Channel, 
FCIP 

Links  Fibre  Channel  arrays  to 
hosts,  bridges  IP  SANs 

May  2002 

ONS  15540  DWDM  switch 

IP 

Bridges  SANs  over  IP 

Shipping 

FCIP  PAM  for  Catalyst  6500 

FCIP 

Bridges  SANs  over  IP 

May  2002 

age  Group.  “But,  in  spite  of  that, 
Cisco  is  clearly  not  someone  you 
can  take  lightly.” 

Cisco  officials  insist  they  are  up 
to  the  task. 

“[Cisco’s  lack  of  storage  experi¬ 
ence]  is  a  criticism  we’ve  heard 
before  when  we  entered  two 
other  well-established  markets: 
the  SNA  market . . .  and  the  voice 
market  through  voice-over-lP 
technologies,”  says  Soni  Jian- 
dani,  a  Cisco  vice  president  of 
marketing.  “I’d  say  we’ve  done 
pretty  well  in  both  instances.” 

One  Cisco  user  says  the  com¬ 


other  vendors.” 

Others  are  a  bit  more  cautious 
about  Cisco’s  foray 

“Even  though  we’d  lean  to 
other  providers  for  storage,  it  is 
an  interesting  offering  in  a  space 
that  is  new  to  Cisco,”  says  Chip 
DiComo,  manager  of  global  infor¬ 
mation  systems  for  Heilman 
Worldwide  Logistics,  a  trans¬ 
portation  company  in  Miami. 

DiComo  has  Cisco  routers  but 
says  his  router  specialists  don’t 
manage  storage,  therefore  they 
don’t  need  storage  devices  that 
are  managed  in  the  same  fash¬ 


they  present. Fibre  Channel  SANs 
—  sales  of  which  IDC  analysts 
say  will  grow  to  more  than  $4.2 
billion  by  next  year  from  $423 
million  in  2000  —  have  been  the 
traditional  way  of  transporting 
storage  data.  They  also  are 
expensive,  require  skilled  work¬ 
ers  to  implement  and  lack  inter¬ 
operability 

IP  storage  (iSCSI)  has  been  pro¬ 
posed  as  a  familiar  and  inexpen¬ 
sive  way  to  transport  data  over  the 
IP  network.  FCIRa  draft  specifica¬ 
tion  within  the  Internet  Engin¬ 
eering  Task  Force,  will  be  used  to 


bridge  isolated  Fibre  Channel 
SANs  for  replication  and  business 
continuity  purposes. 

Cisco  plans  to  introduce  more 
products  that  use  iSCSI  and  FCIP 
Cisco  recently  ditched  a  long¬ 
standing  deal  with  Brocade,  the 
largest  storage  switch  maker,  to 
make  FCIP  gear  of  its  own. 

Cisco  and  Brocade  allied  in 
April  2001  to  make  an  FCIP  blade 
for  Cisco’s  Catalyst  6500  and  7600 
series  switches  that  would  con¬ 
nect  any  storage  vendor’s  switch 
and  bridge  SANs  across  IP  The 
deal,  which  was  expected  to  pro¬ 
duce  a  product  by  year-end  2001 , 
soured  when  Brocade  delivered 
a  design  that  connected  only  the 
company’s  SilkWorm  Fibre  Chan¬ 
nel  switches  to  the  Catalyst, 
sources  say. 

While  both  companies  de¬ 
clined  to  discuss  the  reasons  for 
the  alliance’s  failure,  they  indi¬ 
cated  that  they  will  develop  their 
own  FCIP  blades. 

Last  week  Cisco  also  an¬ 
nounced  that  it  has  joined  with 
QLogic  to  share  technology. 
Sources  close  to  the  companies 
say  that  the  SN  5428  switch  will 
contain  QLogic  Fibre  Channel 
chips. 

ITie  company  also  will  intro¬ 
duce  an  FCIP  module  that  will 
join  SAN  islands  as  soon  as  this 
summer.  This  module  will  oper¬ 
ate  at  as  much  as  350M  bit/sec 
See  Cisco,  page  72 


Web  services 

continued  from  page  14 

runs  off-site  at  Pacific  Bell,  it  is 
routed  to  the  telephony  server, 
which  sends  a  SOAP  message 
that  checks  the  call-routing  rules 
on  the  PAS.  If  the  rules  call  for 
the  message  to  be  delivered  to 
the  phone,  it  is  routed  to  the 
receiver’s  phone.  If  the  call  is  not 
answered,  it  is  rolled  over  to  the 
telephony  server,  which  again 
uses  a  SOAP  message  to  check 
the  rules  for  what  to  do.  If  the 
call  is  to  be  routed  to  voice  mail, 
the  telephony  server  records  the 
message  as  a  wav  file  and 
routes  it  to  the  message  server 
again  using  an  XML  document 
carried  by  a  SOAP  message.  The 
XML  document  is  converted  at 
the  messaging  server  using  its 
Web  services  interface  to  a  for¬ 
mat  it  understands. 

When  a  user  checks  e-mail,  he 
can  play  the  wav  file  and  even 
forward  it  to  another  user.  If  the 
user  checks  for  messages  via  the 
phone,  a  VoiceXML  interface 
announces  new  messages  and 
provides  options  that  can  be 


The  University  of  California  at  Berkeley  is  tying  together 
its  phone,  e-mail,  fax  and  mobile  devices  into  a  unified 
in-box  using  XML  and  SOAP.  Here’s  how  it  works: 


Incoming  calls  are  routed  to 
the  telephony  server,  which 
sends  a  SOAP  message  that 
checks  the  call-routing  rules 
on  the  PAS.  If  the  rules  say 
deliver  the  call,  it  is  routed 
that  way. 


MagnetPoint 

Presence/ 

Availability 
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If  the  call  is  not  answered, 
the  telephony  server 
records  the  message  as  a 
.wav  file  and  routes  it  to 
the  message  server  using 
an  XML  document  carried 
by  a  SOAP  message. 


Telephony  server 


Messaging  servers 
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When  the  user  checks  e-mail,  he  can  play  the  .wav  file  and  even 
forward  it  to  another  user.  If  the  user  checks  for  messages 
via  phone,  a  VoiceXML  interface  announces  new  messages  and 
provides  options  that  can  be  selected  from  the  keypad. 


selected  from  the  keypad.  The 
wav  file  is  then  converted  to 
analog  on  the  telephony  server 
and  played  over  the  phone.  If  the 


user  wants  to  check  e-mail, a  text- 
to-speech  system  will  be  integrat¬ 
ed  into  the  PAS  with  a  Web  ser¬ 
vices  interface.The  university  has 


not  yet  chosen  a  product  to  per¬ 
form  that  function. 

Similarly,  if  the  user  accesses 
the  network  with  a  cell  phone  or 
a  device  with  a  wireless  connec¬ 
tion,  the  PAS  recognizes 
the  device  and  sends 
the  requested  messages 
out  through  an  appro¬ 
priate  module  built  for 
the  user’s  device. 

Users  also  have  the 
option  of  installing  a 
small  desktop  instant¬ 
messaging  client  that 
the  PAS  can  use  to  send 
notifications  of  new 
messages  and  to  see  if  other 
users  are  online  and  to  send 
them  messages. 

“The  biggest  benefit  is  that  we 
are  not  locked  into  any  device, 
any  type  of  message,” Kouba  says. 
“Tomorrow  if  we  have  holograms 
it  just  becomes  another  type  of 
message  —  another  neutral 
object  created  using  SOAP  and 
Web  services." 

Another  thing  Kouba  likes  is 
that  she  is  not  writing  any  Web 
services  herself. 

“We  don’t  want  to  become  Web 


services  experts.  We  are  a  univer¬ 
sity  —  our  mission  is  to  provide 
education  and  research,”  she 
says. 

The  system  has  a  Web  portal 
interface  so  students,  faculty 
and  staff  can  set  up  their 
accounts  manually.  The  system 
provides  them  with  a  phone 
number,  an  email  account  and 
the  ability  to  set  their  personal 
routing  rules. 

Students  pay  for  the  voiceac- 
cess  features,  but  the  in-box  is 
free. 

Kouba  says  she  hopes  the  pilot 
is  successful,  but  she  keeps  a  crit¬ 
ical  eye  on  Web  services. 

“The  scariest  part  is  that  Web  ser¬ 
vices  is  in  its  infancy;  it  could 
crash  like  X.500  or  anything  else.  If 
that  is  the  case,  hopefully  we  will 
find  that  out  in  the  pilot,” she  says. 

“But  we  want  it  to  work,  we 
want  to  make  this  work,” 
because  she  says  it  is  the  closest 
thing  to  IT  nirvana  she  has  ever 
seen  ■ 
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Sigaba  secures  transactions 


Secure  transmission 


Sigaba  next  week  will  ship  Secure  Statements  3.0,  which 
lets  companies  send  encrypted  documents  within  an 
e-mail  message  that  the  recipient  can  read  using  only 
a  Web  browser. 


Recipient  receives  encrypted  e-mail 
from  Company  A,  clicks  on  it  and  is 
asked  for  user  name  and  password 
to  decrypt  message. 


o 


Secure  Statement 
server  verifies  user 
name  and  password. 


Recipient 


Secure 

Statements 

server 
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Sigaba  key 
server 


Server  fetches  key  from  Sigaba  Key  server  to  decrypt  message 
and  returns  it  to  recipient.  Encrypted  mail  is  decrypted  using 
key  and  displayed  in  a  browser. 


■  BY  JOHN  FONTANA 

Sigaba  Software  next  week  will 
introduce  the  next  version  of  its 
secure  software  for  electronic 
document  delivery  with  an  eye 
on  helping  IT  executives  comply 
with  government  regulations  for 
secure  communications,  espe¬ 
cially  in  the  financial  services 
and  healthcare  arena. 

The  company  is  releasing  Se¬ 
cure  Statements  3.0,  server  soft¬ 
ware  that  encrypts  and  securely 
sends  electronic  documents, 
bills  and  invoices  via  e-mail. 
The  software  is  used  primarily 
for  secure  electronic  document 
delivery  and  for  electronic  bill 
presentment. 

Secure  Statements  3.0,  previ¬ 
ously  called  Sigaba  Courier,  fea¬ 
tures  intelligent  decryption,  ex¬ 
panded  document  support, 
and  auditing  and  reporting 
tools. 

IT  executives  say  the  software 
and  its  128-bit  encryption  has 
the  potential  to  help  them  com¬ 
ply  with  regulations  such  as  the 
Health  Insurance  Fbrtability  and 
Accountability  Act  of  1996 
(HIPAA)  and  the  Gramm-Leach- 
Bliley  act,  both  of  which  have 
provisions  that  require  secure 
communication. 

Noncompliance  of  the  regula¬ 
tions  can  result  in  big  fines,  but 


the  technology  to  comply  tradi¬ 
tionally  has  been  difficult  to  set 
up  and  maintain. 

“HIPAA  compliance  and  ease 
of  use,  those  are  the  big  keys  for 
Sigaba,”  says  John  Wiliars,  IT 
director  and  HIPAA  security  offi¬ 
cer  for  Mission  Hospital  in  Mis¬ 
sion,  Texas.  Wiliars  runs  Sigaba’s 
Secure  Email  product  for  inter¬ 
nal  communications  and  is  look¬ 
ing  into  Secure  Statements  for 
use  with  the  hospital’s  third-party 
providers  such  as  Medicaid  and 
Medicare. 

“We  looked  into  a  public-key 
infrastructure  [PKI],  but  the 
overhead  cost  is  out  of  our 
reach,”  Wiliars  says. “We  obvious¬ 
ly  need  to  modernize  our  com¬ 
munications  system,  but  our 
expertise  is  in  healthcare,  not 
technology,  so  we  need  some¬ 
thing  easy”  Wiliars  says  the  ease 
of  use  comes  from  knowing  that 
customers  and  partners  only 
need  a  Web  browser  and  an 
e-mail  client  to  receive  secure 
documents. 

Analysts  say  the  ease  of  use  of 
secure  messaging  products, such 
as  those  from  Sigaba,  Tumble¬ 
weed,  PrivateExpress  and  Cert- 
ifiedMail,  is  a  critical  factor  when 
IT  departments  consider  how 
they  will  comply  with  govern¬ 
ment  regulations. 

“These  systems  get  you  around 


having  to  deploy  PKI.  They  can 
protect  your  data,  and  they  are 
easy  to  set  up  and  are  easy  for 
end  users.  That  meets  all  the 
requirements,”  says  Joyce  Graff, 
an  analyst  with  Gartner. 

The  Secure  Statements  server 
acts  as  a  gateway  and  message 
transfer  agent  by  taking  the  out¬ 
put  from  applications  that  gener¬ 
ate  bills  or  documents,  stuffing 
them  into  an  encrypted  e-mail 


message  and  sending  them  to 
the  intended  recipient. 

The  new  features  include  intel¬ 
ligent  decryption,  which  auto¬ 
matically  discovers  the  best  soft¬ 
ware  on  the  host  machine  for 
decrypting  a  message. 

Secure  Statements  is  sched¬ 
uled  to  be  available  April  30.The 
base  price  is  $50,000  for  up  to 
10,000  messages  per  month. 

Sigaba:  www.sigaba.com 
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Smarts  manages  across  domains 


■  BY  DENISE  DUBIE 

WHITE  PLAINS,  N.Y  —  Smarts 
will  boost  its  management  soft¬ 
ware  to  help  users  more  quickly 
pinpoint  problems  in  systems  that 
deliver  business  applications. 

Next  month  at  NetWorld+In- 
terop  in  Las  Vegas,  Smarts  will 
unveil  its  InCharge  Application 
Services  Manager  (ASM)  module, 
part  of  the  company’s  InCharge 
line  of  network  performance  and 
availability  software. 

ASM  plugs  in  to  Smarts’  Service 
Assurance  Manager  (SAM)  to  ag¬ 
gregate  data  from  third-party  col¬ 
lection  agents  and  other  Smarts 
adapters  that  plug  SAM  in  to 
third-party  network  equipment 
and  management  software.  The 
module  features  a  correlation 
engine  that  searches  the  agent  in¬ 
formation  comparing  it  against  a 
predefined  library  of  potential 
performance  errors  to  pinpoint 


application 
performance 
problems. 

Once  loaded 
onto  a  server,  the 
InCharge  SAM 
software  begins  an  autodiscovery 
process  on  the  network  seeking 
out  alarms,  Management  In¬ 
formation  Base  variables,  SNMP 
event  data, system  log  data  or  data 
from  other  network  management 
software,  such  as  Hewlett-Pack¬ 
ard’s  OpenView  or  IBM  Tivoli’s 
NetView.The  software  is  written  to 
include  information  about  each 
managed  element  and  the  prob¬ 
lems  that  can  occur. 

A  business  application,  such  as 
online  shopping,  depends  on  a 
Web  server,  an  application  server, 
a  database, a  router  or  switch,  and 
operating  system  software  all 
working  in  concert  to  deliver  the 
service  to  an  end  user.  Many  com¬ 
panies,  such  as  Smarts  compet¬ 


itors  Computer 
Associates,  IBM 
Tivoli  Systems, 
HP  and  BMC 
Software,  can 
monitor  and 
report  on  the  performance  of  one 
or  each  of  those  elements  sepa¬ 
rately,  but  Smarts  says  that  with 
ASM  it  now  can  monitor  across 
those  domains  and  manage  the 
total  application  service  delivery 
cycle. 

Until  now,  InCharge  worked  to 
find  the  cause  of  problems  with 
network  hardware,  such  as 
switches,  routers  and  servers. 

Glenn  O’Donnell,  a  program 
director  with  Meta  Group,  says 
the  ASM  software  can  help  auto¬ 
mate  some  parts  of  service-level 
management,  which  attempts  to 
understand  and  then  manage 
the  relationships  between  net¬ 
work,  systems  and  software 
applications  within  one  infra¬ 


structure.  And  although  Smarts 
has  yet  to  reach  the  goal  of  fully 
automating  the  process,  O’Don¬ 
nell  says  the  statistical  analysis 
that  Smarts  provides  in  its  soft¬ 
ware  eases  and  quickens  prob¬ 
lem  identification  and  resolu¬ 
tion  for  IT  managers. 

“[Smarts]  is  helping  users  map 
applications  to  the  individual 
components  that  make  them  up, 
which  is  primarily  a  manual 
process,  and  no  one  has  figured 
out  how  to  completely  automate 
it  yet,"  he  says. 

Pricing  for  the  ASM  module 
begins  at  around  $60,000,  depen¬ 
ding  on  network  configuration. 
Smarts  InCharge  SAM  software, 
which  costs  $60,000,  is  required  to 
run  the  ASM  module. 

Smarts  will  announce  the  beta 
availability  of  its  ASM  module  at 
N+I.The  company  says  the  mod¬ 
ule  will  be  available  in  July. 

Smarts:  www.smarts.com 
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WEBSPHERE  for  INFRASTRUCTURE 

|  CONNECTS  MORE  APPLICATIONS,  DEVICES,  PROCESSES  AND  PEOPLE  THAN  ANY  OTHER  SOFTWARE  | 


business  software 


ibm.com/websphere/more 


IT’S  A  DIFFERENT  KIND  of  WORLD. 

YOU  NEED  A  DIFFERENT  KIND  of  SOFTWARE. 


Introducing  the  Mobile  Intel®  Pentium®  4  Processor  -  M. 


pentium  /j 


Engineered 
for  the  road. 
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Road  warriors  rejoice.  The  all-new  Mobile  Intel®  Pentium®  4  Processor  -  M  is  here,  specifically 
designed  for  mobility.  Intel’s  Micro  FCPGA  packaging  technology  enables  thin  and  light  notebooks 
for  added  portability.  And  Enhanced  Intel®  SpeedStep™  Technology  optimizes  application 
performance  for  long-lasting  battery  power.  For  more  about  the  fastest  mobile  processors  in 
history,  visit  www.intel.com/ebusiness/mobile. 
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■  TCP/IP,  LAN/WAN  SWITCHES 

■  ROUTERS  ■  HUBS 

■  ACCESS  DEVICES  ■  CLIENTS 

■  SERVERS  ■  OPERATING  SYSTEMS 

■  VPNS  ■  NETWORKED  STORAGE 


■  Dell  will  launch  an  enterprise  rack 
server  based  on  dual  Intel  Xeon 
processors  in  early  June.  The 
PowerEdge  2650  is  a  2U-sized  (3.5- 
inch)  machine  supporting  dual  data 
rate  dynamic  RAM  and  includes  a 
chipset  from  Serverworks.  It  will  run 
Windows  2000  or  Red  Hat  Linux  7.2. 
The  box  will  sit  in  the  middle  of  Dell’s 
rack  server  range,  replacing  the  2550 
model  that  was  launched  in  April  last 
year.  Below  it  will  be  the  company's 
1U  1650  dual  Pentium  III  processor 
machine  and  above  it  the  4U  6450 
quad  Xeon  processor  box,  making  it 
the  smallest  Xeon-based  rack  server 
in  Dell's  line.  The  company  wouldn’t 
release  more  details  about  the  ma¬ 
chine,  although  a  Dell  representative 
says  it  will  be  broadly  similar  in  per¬ 
formance  to  the  PowerEdge  4600  dual 
Xeon  processor  tower  computer, 
which  was  iaunched  in  February.  He 
also  hinted  the  price  would  be  similar. 
The  PowerEdge  4600  supports  1.8-  and 
2.2-GHz  Xeon  processors  and  be¬ 
tween  512M  bytes  and  12G  bytes  of 
memory,  has  a  400  MHz  system  bus 
and  64-bit  PCI-X  bus.  It  costs  from 
$3,900,  says  Hirokazu  Seto,  a  market¬ 
ing  manager  at  Dell,  www.dell.com 

■  Compaq  last  week  brought  out  two 
new  storage  systems  designed  to 
enhance  the  lower  end  of  its  line  of 
network-attached  storage  products. 

The  StorageWorks  NAS  B3000  and 
the  StorageWorks  NAS  S1000  are 

available  immediately.  The  B3000  con¬ 
nects  via  Fibre  Channel  to  an  existing 
storage-area  network,  giving  users 
access  to  both  block  SAN  and  file 
NAS  level  data  in  one  pool  of  storage 
systems.  On  the  lower  end,  the  S1000 
is  a  NAS  appliance  targeted  at  small¬ 
er  customers  or  branch  offices.  The 
B3000  was  designed  to  connect  with 
Compaq’s  MSA  1000  SAN  system  via 
Fibre  Channel  and  add  file-level  data 
access  to  a  SAN.  The  product  starts 
at  $43,000  with  288G  bytes  of  storage 
capacity  and  a  Fibre  Channel  switch. 
The  S1000  starts  at  $3,500  for  320G 
bytes  of  storage  or  $5,500  for  640G 
bytes  of  storage  capacity 
www.compaq.com 


MasterCard  boosts  global  IP  net 


■  BY  ELLEN  MESSMER 

ST.  LOUIS — With  transaction  volumes  at 
a  record  high,  MasterCard  International  is 
expanding  its  network  reach  by  opening 
its  first  regional  data  centers  in  Europe, 
Latin  America  and  the  Far  East. 

In  so  doing,  MasterCard  will  take  the 
gospel  of  TCP/IP  abroad:  The  company 
overhauled  its  decades-old  packet-switch¬ 
ing  network  to  IP-based  frame  relay  three 
years  ago. 

Outside  North  America,  banks  and  their 
card-processing  service  providers  still 
tend  to  rely  on  slow-speed  X.25  packet 
switching  for  card  processing.  While  there 
are  still  a  few  X.25  hold-outs  among  the 
banks  on  this  side  of  the  ocean, 
MasterCard  IT  executives  say  the  majority 
have  embraced  IPOpening  local  data  cen¬ 
ters  in  other  countries  gives  MasterCard 
the  chance  to  provide  specialized  pay¬ 
ment  services,  such  as  wireless  card  pro¬ 
cessing.  But  there  also  will  be  a  challenge 
in  convincing  financial  institutions 


abroad  that  IP  is  the  way  to  go  in  handling 
financial  authorization  and  settlements. 

“Europe  has  typically  been  an  X.25  envi¬ 
ronment,”  says  MasterCard’s  Artie  Ahrens, 
who  is  working  with  fellow 
senior  vice  president  Rob 
Reeg  to  architect  how  the 
new  data  centers  will  link 
into  MasterCards  largely  IP- 
based  network  called 
BankNet. 

While  X.25  has  been  a  reli¬ 
able  workhorse  for  decades, 
it  is  woefully  obsolete,  sup¬ 
porting  only  19.2K  to  64K 
bit/sec  throughput  and 
requiring  complex  round- 
robin  switching  techniques 
to  prevent  bottlenecks,  Ah¬ 
rens  says.  X.25  doesn’t  support  modern 
Web-based  applications  that  are  increas¬ 
ingly  important  in  banking  and  e-com- 
merce  applications. 

Most  of  MasterCard’s  North  American 
banking  clientele,  which  purchase  card 


services  through  membership  fees,  sup¬ 
port  IP  connections  to  their  mainframes 
and  servers.  MasterCard  installs  what  it 
calls  the  MasterCard  Interface  Processor 
in  each  bank’s  data  center 
to  link  bank  credit  and 
debit  authorization  systems 
into  BankNet  for  real-time 
processing.  A  transaction  — 
MasterCard  conducted  11.6 
billion  last  year,  up  18% 
from  2000  —  occurs  in  as 
little  as  150  msec  between 
the  merchant  point-of-sale 
and  the  two  banks 
involved.  Overall,  Master- 
Card  processed  close  to  $1 
trillion  worth  of  transac¬ 
tions  last  year. 

A  few  holdouts  in  the  banking  industry 
still  insist  on  bisynchronous  or  SNA-type 
connections,  so  MasterCard  for  the  forsee- 
able  future  will  have  to  maintain  a  multi¬ 
protocol  network,  Ahrens  says. 

See  MasterCard,  page  22 


Artie  Ahrens  says  existing 
X.25  is  woefully  obsolete. 


Start-up  sets  storage  mgmt.  rules 


■  BY  DENI  CONNOR 

LAGUNA  HILLS,  CALIF  —  Start-up  Coal- 
sere  will  soon  offer  software  that  saves  IT 
administrators  time  managing  storage  and 
increases  the  efficiency  of  their  IP  and 
Fibre  Channel  storage  networks. 

The  software,  code-named  Fblicy-Driven 
Storage  Management  (PDSM), supplies, dis¬ 
tributes,  installs  and  reconfigures  applica¬ 
tions  to  run  on  storage  networks. 

Coalsere  is  creating  software  that  also 
can  tune  networks  so  they  perform  well 
with  applications.  Using  Coalsere’s  soft¬ 
ware,  rules  would  be  created  that  could 
adjust  the  performance  and  configuration 
of  a  network  on  the  fly  to  changing  con¬ 
ditions.  For  example,  PDSM  would  syn¬ 
chronize  the  actions  of  servers  and  arrays 
so  the  size  of  an  array  would  not  be 
shrunk  just  as  it  was  starting  to  read  lots  of 
streaming  data. 

“We  enable  dynamic  provisioning,”  says 
Scott  Ruple,  president  of  Coalsere. 
“Wherever  you  load  our  software,  whether 
it’s  a  server,  client  or  switch, you  identify  the 
resource  available.  Our  software  dynami¬ 
cally  provisions  those  resources  on  the  net¬ 


■ 

PROFILE:  COALSERE 

Location:  Laguna  Hills,  Calif. 

Founded:  July  2001 

Product:  NAS  Accelerator 

Product  type:  Policy-driven  storage 
management 

Founders:  Scott  Ruple,  president; 
RolandThibodeau,  vice  president 
of  worldwide  sales;Terry  Flanagan, 
chairman. 

Founders’  backgrounds: 

JNI,  Motorola 

Financing:  An  undisclosed  amount 
from  Bootstrapped. 

Fun  fact:  Company  name  derived 
from  the  Latin  coalescere  —  to  grow 
together.  Spelling  came  about  by 
lopping  letters  off  until  they  got 
something  that  looked  good. 

work”  to  run  applications  in  an  effective 
manner. 

While  Coalsere  does  not  have  any  users 
of  its  software,  analysts  say  they  are  excited 


about  its  prospects. 

“There’s  no  question  that  this  type  of  soft¬ 
ware  is  necessary/’  says  Tony  Prigmore,  an 
analyst  with  the  Enterprise  Storage  Group. 
“It’s  enormously  important  because  it  can 
easily  provide  a  change  management  func¬ 
tion  and  because  storage  is  very  complex 
and  energy-intensive.  We  change  our  con¬ 
figurations  frequently  Things  don’t  stay  in 
place  very  long  without  requiring  some 
change.” 

Coalsere’s  software  runs  on  any  Intel- 
based  server  or  appliance.  The  company 
places  an  agent  on  each  storage  device 
and  server  that  is  involved  in  any  storage 
application  process,  which  lets  the  soft¬ 
ware  monitor  storage  operations  and  tune 
them  to  the  application  or  service  running 
on  it.  Customers  can  monitor  and  manage 
the  software  from  any  Web-based  console. 

PDSM  differs  from  products  such  as 
TurboLinux’s  FbwerCockpit  in  that  the  poli¬ 
cies  it  invokes  are  made  across  the  storage 
network,  not  only  for  a  particular  device 
such  as  a  server. 

Coalsere  expects  to  announce  the  prod 
uct  in  July 

Coalsere:  www.coalsere.com 
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“You  can  only  understand  Web  services  if 
you've  been  in  the  fashion  industry.  Web 
services  are  fashionable,  just  as  pink  might 
be  this  year's  fashionable  color” 

—  Larry  Ellison 

If  there  were  a  competition  for  the  most 
often  maligned  software  executive,  Bill 
Gates  would  only  beat  out  Larry  Ellison 
for  the  title  because  not  enough  people 
know  who  Ellison  is  (and  doesn’t  that  just 
rub  Ellison  the  wrong  way!).  The  Oracle 
CEO  often  has  been  cited  as  having  the 
biggest  ego  in  California  (a  title  worth 
bragging  about),  and  is  frequently  lam- 


www.nwfusion.com 


Larry  got  it  right 


pooned  when  his  predictions  and  pro¬ 
nouncements  go,  as  the  Brits  say  “pear 
shaped."  Think  about  “Network  Com¬ 
puters,”  for  example. 

Even  when  Larry  is  right  (such  as  his 
National  Identity  Card  idea),  the  way  he 
presents  it  is  sure  to  antagonize  not  only 
those  opposed  to  his  idea  but  many  of 
those  still  sitting  on  the  fence  trying  to 
decide  which  way  to  jump.  A  good  exam¬ 
ple  is  the  above  quote  from  Ellison’s 
keynote  address  at  the  recent  Oracle  Apps 
World  conference.  “Web  services”  really  is 
little  more  than  a  buzz  phrase  right  now, 
appropriated  by  just  about  every  software 
vendor  who  wants  to  sell  you  something. 
But  as  Ellison  went  on  to  say  “...the  idea 
that  Oracle  is  going  to  put  a  Web  services 
interface  on  its  applications,  and  [that] 
Siebel  is  going  to  do  that,  and  that  that’s 
going  to  make  it  easier  for  you  to  connect 
Oracle  to  SAPor  Siebel  to  SAPthat  s  just  the 
most  ridiculous  thing  I’ve  heard  in  my 


entire  life.”  Hyperbole  is  usually  not  too  far 
from  Larry’s  rhetoric. 

But  eliminate  the  bombastic  style,  con¬ 
centrate  on  the  ideas  and  Ellison  has 
made  two  very  good  points. 

First,  today’s  “Web  services”  are  simply  a 
recycling  of  yesterday’s  “peer-to-peer”  ser¬ 
vices,  which  themselves  were  almost 
indistinguishable  from  “client-server”  ser¬ 
vices.  Most  software  vendors  want  to  be 
identified  with  the  flavor  of  the  month,  so 
they’ll  use  the  buzz  phrases  to  identify 
their  products  —  even  though  the  prod¬ 
ucts  don’t  change! 

Secondly, there’s  no  such  thing  as  a“Web 
services  interface,” and  even  if  there  were, 
vendors  would  need  to  do  a  whole  lot 
more  in  terms  of  cooperative  computing 
if  they  really  wanted  these  services  to 
interact.  XML  and  its  brethren  will  be  very 
useful  in  this  regard, as  will  the  SOAP  pro¬ 
tocol.  But  SOAP  and  XML  by  themselves 
don’t  define  “Web  services.”  Ellison  got  it 


right  this  time. 

Kearns,  a  former  network  administrator,  is  a 
freelance  writer  and  consultant  in  Silicon 
Valley.  He  can  be  reached  at  wired@vquill 
.com. 


Tip  of  the  Week 


The  Distributed  Manage¬ 
ment  Task  Force  (www. 
dmtf.org)  has  chosen  the 
Open  Group  (www.open 
group.org)  to  develop  a  certifi¬ 
cation  program  for  the 
Common  Information  Model. 
Follow  developments  at  the 
Open  Group  —  this  one  could 
be  a  feather  in  your  cap! 


U.S.  Robotics  doubles 
speed  of  wireless  gear 

Products  compatible  with  existing  802.11b  systems. 


■  BY  PETER  SAYER 

U.S.  Robotics  has  boosted  the 
speed  of  its  latest  range  of  wire¬ 
less  LAN  products  to  22M 
bit/sec,  while  retaining  compat¬ 
ibility  with  existing  2.4-GHz  sys¬ 
tems  built  to  the  IEEE  802.11b 
standard. 

Although  a  faster  alternative, 
the  54  M  bit/sec  IEEE  802.11a, 
on  the  market  for  more  than  a 
month,  systems  based  on  that 
standard  are  not  backward- 
compatible  because  they  oper¬ 
ate  in  a  different  frequency 
band  —  5GHz,says  Juan  Lopez, 
USR’s  network  product  line 
manager. 

A  full  family  of  products 

But  USR’s  22M  bit/sec  prod¬ 
ucts  —  a  wireless  access  point 
or  base  station,  a  PC  Card  and  a 
PCI  adapter  —  are  fully  back- 
ward-compatible  with  existing 
802.11b  wireless  LAN  systems, 
Lopez  says. 

That  means  the  new  products 
can  communicate  with  one 
another  at  22M  bit/sec  and 
slow  down  to  1 1 M  bit/sec  to 
communicate  with  older  prod¬ 
ucts. 

This  backward  compatibility 
witli  other  2.4-GHz  equipment  is 
important  because  many  of  the 
service  providers  offering  wire¬ 
less  LAN  coverage  in  public 
spaces  such  as  airports  and 


hotels  already  use  802.11b  sys¬ 
tems. 

Older  gear  still  can  benefit 
from  some  of  the  other  perfor¬ 
mance  improvements  that  the 
new  range  offers.  Because  of  a 
more  powerful  radio,  the  new 
products  offer  30%  greater  lin¬ 
ear  range,  or  around  70%  better 
area  coverage,  than  existing  sys¬ 
tems,  Lopez  says. 

Although  no  finished  stan¬ 
dard  exists  for  the  22M  bit/sec 
wireless  LANs,  Lopez  is  confi¬ 
dent  that  USR’s  systems  will 
interoperate  with  those  of  its 
competitors  when  they  arrive 
on  the  market. 

USR’s  22M  bit/sec  products 
will  be  available  in  June,  the 
company  says. 

The  22M  bit/sec  Wireless 
Access  Point  will  have  a  sug¬ 
gested  retail  price  of  $200;  the 
22M  bit/sec  Wireless  Access  PC 
Card,  $100;  and  the  22M  bit/sec 
Wireless  Access  PCI  Adapter 
Card, $120. 

Sayer  is  a  correspondent  with 
IDG  News  Service's  Paris 
bureau. 


Wireless 


Subscribe  to  our  free  newsletter. 
DocFinder  5434  www.nwfuston.com 


fcl  Europe  has  unique 
processing  requirements 
but  also  local  business 
opportunities  in  local 
domestic  processing.)! 

Rob  Reeg 

Senior  vice  president,  MasterCard 


MasterCard 

continued  from  page  21 

MasterCards  network  already 
processes  card  transactions 
internationally,  but  this  is  often 
through  third-party  processors. 
MasterCard  is  set  to  merge  with 
one  of  these  partners,  EuroPay, 
this  spring,  which  will  lead  to  a 
complete  redesign  of  EuroPay’s 
Brussels,  Belgium  data  center. 

“Europe  has  unique  process¬ 
ing  requirements  but  also  local 
business  opportunities  in  local 
domestic  processing,”  Reeg 
says.  He  expects  the  Brussels 
center  will  be  outfitted  along 
the  lines  of  MasterCard’s  spank¬ 
ing  new  550,000  square-foot, 
center  for  2,000  employees  in 
St.  Louis:  Gigabit  Ethernet  to  the 
desktop,  Sun  Solaris  and  IBM 
NetFinity  servers,  Hewlett- 
Packard  OpenView  manage¬ 
ment  and  applications  written 
largely  in-house.  And  Master- 
Card  will  install  IP-based  equip¬ 
ment  in  lieu  of  X.25. 

MasterCard  can’t  force  the 
European  banks  to  move  from 
X.25  to  IP  for  card  processing, but 
“we  can  give  them  incentives  to 
do  so,  by  charging  higher  prices 
to  use  X.25  than  IP,”  Ahrens  says, 
because  it  costs  MasterCard  con¬ 
siderably  more  to  support  X.25 
than  IP 

Only  a  few  months  back, 
MasterCard  opened  its  first  non- 
U.S.  card-processing  center  in 
Sydney,  Australia,  to  test  the 
waters  on  how  to  provide  spe¬ 
cialized  card-processing  services, 
in  this  case  with  taxi  cabs  pro¬ 
cessing  MasterCard  wirelessly. 

MasterCard  also  has  plans  to 
open  regional  data  centers  in 


Latin  America  and  the  Far  East. 
Reeg  and  Ahrens  say  they 
expect  to  encounter  resistance 
to  giving  up  X.25.  As  in  Europe, 
MasterCard  perceives  there’s  the 
potential  to  deliver  specialized 
payment  services  locally,  or 
aggregate  the  MasterCard  Inter¬ 
face  Processors  inside  any  new 
data  center  instead  of  collocat¬ 
ing  them  at  the  bank  site.  In 
Latin  America  and  the  Far  East, 
MasterCard  expects  to  have  to 
spread  the  work  about  IP  for 
payments  processing. 

The  expansion  of  BankNet  also 
will  entail  an  even  closer  rela¬ 
tionship  with  AT&T,  the  carrier 
MasterCard  chose  not  only  for  its 
frame  relay  service,  but  also  to 
manage  the  984  Cisco  routers 
that  make  up  BankNet. 

AT&T  worked  closely  with 
British  Telecom  in  Europe  in  a 
joint  operation  known  as 
Concert  until  the  two  telecom 
carriers  had  a  falling  out  and  dis¬ 
solved  the  partnership  last  year. 
“We  were  happy  with  AT&T  and 
Concert  until  they  got  a  divorce,” 
Ahrens  says.  He  says  MasterCard 


likely  will  turn  even  more  to 
AT&T  for  help  in  managing  the 
expanding  BankNet  in  Europe. 

As  far  as  security  for  its  IP  net¬ 
work  goes,  MasterCard  would 
only  say  it  provides  firewalls, 
encryption  and  proper  autho¬ 
rization  for  BankNet  transac- 
* 

tions.  In  fact,  just  like  any  bank, 
MasterCard  is  subject  to  the  strict 
security  audits  that  federal  regu¬ 
lators,  including  the  Federal 
Financial  Institutions  Exam¬ 
ination  Council,  undertake  at 
least  once  a  year  on  companies 
in  the  banking  industry.  ■ 


More  online! 

See  how  other  net  execs  are  advancing  ther 
businesses  with  cutting-edge  technology. 
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How  will  you  know  where  he’s  been, 
and  what  damage  he’s  done? 
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Tripwire  is  The  Data  Integrity  Assurance  Company 

Tripwire®  establishes  a  baseline  of  data  in  its  known 
good  state,  monitors  and  reports  any  changes  to 
that  baseline,  and  enables  rapid  discovery  and 
recovery  when  an  undesired  change  occurs. 

Foundation  for  Data  Security 

■  Ensure  the  integrity  of  your  data 

■  Instant  assessment  of  system  state,  reporting 
“integrity  drifts" 

Maximize  System  Uptime 

■  Eliminate  risk  and  uncertainty 

■  Enable  quick  restoration  to  a  desired  state 

Increase  Control  and  Stability 

■  Ongoing  monitoring  and  reporting 

Lower  Costs 

■  Find  and  fix  problems  quickly  and  precisely  - 
no  more  guess  work 


Your  firewalls  and  intrusion  detection  tools  alone 
are  not  enough  to  keep  systems  trustworthy. 
Tripwire’s  data  integrity  assurance  products  are  the 
only  way  to  know  with  100%  confidence  that  your 
data  remains  uncompromised.  For  nearly  10  years 
Tripwire  has  been  helping  IT  professionals  know 
exactly  what’s  changed  on  their  systems,  and 
helping  them  to  recover  quickly. 

For  a  FREE  30-day  fully-functional 

eval,  call  toll-free:  1.800.TRIPWIRE  (874.7947)  or 
visit  http://networld.tripwire.com  today! 


TRIPWIRE 
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THE  DATA  INTEGRITY  ASSURANCE  COMPANY 


©  Copyright  2002.  Tripwire  and  the  Tripwire  logo  are  registered  trademarks  of  Tripwire,  Inc. 


Where  are  the  best  IT  learning  tools? 


Pielarred  Partners. 


►  IT  Certification  ^ 

Register  today  for  Cisco, 
Microsoft  and  other  career- 
advancing  certification 
programs. 


►  The  Bookstore 


More  than  150  titles  on  topics 
such  as  security, 
network 


management, 
leadership  and 
Web  development. 


MM  MM 


;  -few 

BletworkWoridWetSmanL 

ftwwr  Source  lor  IT  looming 
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Cisco  Press 


You'll  find  them  all 


►  WHAT'S  HOT 


•  New  courses 
and  certifications 

•  Latest  networking  books 

•  Leading  Network  World 
events  and  seminars 


►  On-site  Training 


Need  your  product,  sales  and 
networking  teams  up  to  speed 
on  the  latest  technologies?  Let 
us  find  an  expert  and  deliver  a 
curriculum  that’s  tailored  to 
you.  Topics  include:  VoIP, 
Internetworking  with  TCP/IP, 
Essentials  of  Networking  and 
many  more! 


NetSmart,  the  premier  source  for  IT  learning,  offers  everything  you  need  to  develop  skills,  build  knowledge  and  advance  your 
career.  And  now,  NetSmart  features  even  more  education  and  training  tools.  Keep  your  team  in  the  know  with  certification 
practice  tests,  on-site  training  and  e-learning  courses. 


Go  to  www.nwnetsmart.com  now  for: 

New  Storage  Networking  Training  and  Certification  Courses!  NetSmart 
welcomes  Infinity  1/0,  the  world  leader  in  network  storage  training 
and  certification.  NetSmart  now  offers  Infinity  I/O  classes  provid¬ 
ing  insights  and  methodologies  for  planning,  developing,  imple¬ 
menting,  and  supporting  a  complete  storage  networking  solution  in 
today's  open-systems  environment.  Check  out  our  suite  of  courses  today  and 
jump  start  your  storage  training 

C  unification  practice  tests.  Purchase  affordable,  high-quality, 
technical  certification  practice  tests  from  Boson  Software.  We  offer  80 
practice  tests  for  Cisco,  Microsoft,  Novell  and  Checkpoint  certification. 


■  On-site  training!  Sign  up  your  team  for  hands-on  courses  in  TCP/IP  inter¬ 
networking  and  choose  a  skill  level  that’s  right  for  you.  These  new,  two-day 
customized  sessions  include  lectures,  labs  and  resource  materials.  Put  your 
team  ahead  of  the  curve  with  cost-effective,  hassle-free,  on-site  training. 

■  Seminars  and  Webcasts.  Register  for  Network  Worlds  face-to-face 
seminars  and  Webcasts  to  hear  what  our  editors,  industry  analysts  and 
technical  experts  from  leading  companies  have  to  say  about  the  hottest 
technologies. 


Sign  up  for  our  free  "IT  Education  and  Training"  newsletter  to  learn  about 
training  your  team,  upcoming  events,  courses,  seminars  and  more. 


www.nwnetsmart.com 


8. 


I  want  to  receive/continue  to  receive  my  FREE 
subscription  to  Network  World.  No,  thank  you.  □ 


Signature  (required)  Date 

0  QUALIFY:  You  must  supply  your  company  name  and  address.  If  military,  please  specifiy 
branch/base.  If  government,  please  specify  division. 


Name 


Title 


Compart) 


Dimtorv’Mail  StopMilitary  Branch  or  Base 


Street  Address 


City 


State 


Zip 


Business  phone  ( _ ) _ 

FAX( _ J _ 

E-mail  address _ 

We  would  like  to  send  you  periodic  information  via  e-mail  on  3rd  party  networking  products/services. 
□  Check  here  if  you  DO  NOT  wish  to  receive  this  information. 


If  there  is  a  parent  company,  please  provide  name: _ 

□  My  home  address  is  also  my  business  address. 

Optional  delivery  address:  Enter  your  home  address  below  if  your  company  will  not  accept  delivery  at  your  business  address: 


Street  Address 


City  State  Zip 

Publisher  reserves  the  right  to  serve  only  those  individuals  who  meet  publication  qualifications.  ALL  questions  must  be 
answered.  Incomplete  forms  will  not  be  processed.  Free  subscriptions  available  to  qualified  US  applicants.  International  rates 
available  upon  request. 

B402 


What  is  the  principal  business  activity  at  your  location? 

(check  ONE  only) 


OLD  Manufacturing  (Non-Computer/ 
Communications  OEM) 

02.D  Finance/Banking 
03.G  Insurance/Rcal  Eslate/Legal 
04.0  Health  Care  Services 
05.0  Hospitaiity/Entertainrnent/ 
Recreation 


09. □Utilities/Process  Industries 
(Mining/Construction/ 
Petroleum  Refining/ 
Agriculture/Forestiy) 

10.11!  Govemment/Military 
1  1.0  Consulting  (Independent)  * 
12.  □  Education 


16.0 Manufacturing  (Computer/ 
Communications/OEM) 

17.0  Resellers/VARs/VADs/ 
Integrators/Distributors* 
(Computers/Communications) 
18.111  Other  (please  specify) 


06.  □  Media/TV/Cable/RadicVPrint  13.G  Carriers/Voice/Data/ISP 


07. □  Retail/Wholesale  14.  □  Web  Hosting/HSP 

Trade/Business  Services  15.0  ASP/SSP/MSP 

08.  □  Transportation 


*Attn  Consultants,  Integrators, 
Distributors,  Resellers:  Please  com¬ 
plete  form  based  on  ALL  clients  and 
your  own  business  needs 


2. 


P:  What  is  your  primary  job  (unction?  (check  one  only) 

S:  What  additional  job  functions  are  you  involved  in?  (check  all  that  apply) 

PS  PS 


□  l.D  Network  Management 

□  2.  □  CIO/CTO/IS/IT/MIS/ 

Systems  Management 

□  3.  □  LAN  Management 


□  4.  □  DataconVTelecom  Management 

□  5.  □  Intemet/IntraneVWetV 

E-Commerce  Management 

□  6.  □  Engineering  Management 


□  7.  □  Corporate  Management 

(CEO,  COO,  CFO,  Pres.,  VP, 
Dir.,  Mgr.) 

□  8.  □  Consultant  (Independent) 

□  9.  □  Other  (please  specify) 


What  is  the  estimated  value  o(  network  equipment  and  services  that  you  specify, 
recommend,  or  approve  the  purchase  Of?  (Please  print  the  appropriate  number  code  on 
the  line  next  to  each  product  category.  Please  complete  ALL  categories  A-0.) 


1. 

$100  Million  or  more 

A 

Large  Systems 

H 

Intemet/Web/E-commerce 

2. 

$50  Million  to  $99.9  Million 

(Mainframes/Minis) 

1 

Intranet/Extranet 

3. 

$25  Million  to  $49.9  Million 

B 

_ Desktops 

J 

_ Internetworking 

(including  Routers,  Switches) 

4. 

$10  Million  to  $24.9  Million 

(Micros/Laptops/  Workstations) 
_ Mobile 

(inducting  PDAs,  Wireless) 

5. 

$1  Million  to  $9.9  Million 

K 

_  Storage 

6. 

$100,000  to  $999,999 

D 

Servers 

L 

_ Remote  Access 

7. 

$50,000  to  $99,999 

E 

LANs 

M 

_ Peripherals 

8. 

Under  $50,000 

F 

_ WAN  Equipment 

N 

_ Software 

9. 

None  of  the  above 

G 

_ Carrier  Services 

O 

_ Service/Support  Services 

a 

1.  □  lot 


jA  n  What  is  the  total  number  of  sites  for  which  you  have  purchase  influence? 

(check  ONE  only) 


1.  □  100+  2.  □  50  to  99  3.  □  20  to  49  4.  □  10  to  19  5.  □  2  to  9  6.  □  1  7.  □  None 


E  Subscription  Application 


Please  indicate  the  Web/Security/LAN/Intemetworking/Wireless/Mobile/WAN  Equipment/ 
Carrier  Services  that  you  are  currently  involved  in  purchasing  or  plan  to  purchase: 

(check  ALL  that  apply)  A.  Currently  involved  in  purchasing  B.  Plan  to  purchase 


□  01.  □  Web  ServerVSoftware 

□  02.  □  Web  Traffic  Management 

□  03.  □  Electronic  Commerce  Tools 


SECURITY - 
A  B 


□  04.  □  Web  Development  Tools 

□  05.  □  Web  Content  Management 

□  06.  □  Web  Collaboration/ 

Groupware 


□  07.  □  Web  Acceleration/Caching/ 

Load  Balancing 

□  08.  □  Web  Hosting  Services 

□  09.  □  Other 


□  10.  □  Firewalls 

□  1 1.  □  Anti-Virus  Software 

□  12.  □  Private  Key  Encryption  Tools 

LANs/INTERNETWORKING _ 

A  B 

□  19.D  Fast  Ethernet 

□  20.  □  Gigabit  Ethernet 

□  21.  □  Layer  3-7  Switches 

□  22.  □  ATM  Switches 

□  23.  □  Routers 

□  24.  □  Network  Attached  Storage 

(NAS) 

O  25.  □  Storage  Area  Networks  (SANs) 

WIRELESS/MOBILE  - 

A  B 


□  13.  □  DES  Encryption  Tools 

□  14.  □  Authentication  Tools 

□  15.  □  Intrusion  Detection 


□  16.  □  Certificate  Authorities 

□  17.  □  Biometrics 

□  18.  □  Other 


□  26.  □  Storage  Backup 

(Optical,  Disk,  Tape,  RAID) 

□  27.  □  Network  Test/Diagnostic 

Tools 

□  28.  □  Uninterruptable  Power 

Supplies  (UPS) 

□  29.  □  Network  Interface  Cards 

(NtCs,  PCMCIA) 


□  30.  □  Hubs/Intelligent  Hubs/ 

Stackable  Hubs 

□  31.  □  Cables, Connectors,  Baiuns 

□  32.  □  Wiring/Fiber  Systems 

□  33.  □  Net  Management  Systems 

□  34.  □  Voice  Over  IP  (VoIP)  Tools 

□  35.  □  Network  Analyzers 

□  36.  □  Other  Local-Area  Network/ 

Internetworking 


□  37.  □  Wireless  LANS 

□  38.  □  Wireless/Cell  Phones 


WAN  EQUIPMENT - 

A  B 

□  43.  □  Frame  Relay  Equipment 

□  44.  □  Bandwidth  Managers 

□  45.  □  Bandwidth  Shaping'QOS 

Tools 

□  46.  □  VPN  Equipment 

□  47.  □  ATM  Switches 


CARRIER  SERVICES  . 
A  B 


A  B  A  B 

□  39.  □  Wireless  LAN  Extension  Tools  □  41.0  PDAs 

□  40.  □  Mobile  Data  □  42.  □  Other  Remote/Wireless 

Equipment/Services 


□  48.0  Voice/Video  over  IP 

Gateways 

□  49.  □  Modems 

□  50.  □  Cable  Modems 

□  51.  □  xDSL  Products 

□  52.  □  Diagnostic/Test  Equipment 


□  53.  □  DSUs/CSUs 

□  54.  □  PBXs 

□  55.  □  Call  Center  Tools 

□  56.  □  Videoconferencing  Gear 

□  57.  □  ISDN  Equipment/Services 

□  58.  □  Other  WAN 

Equipment/Services 


□  59.  □  Internet  Access 

□  60.  □  Private  Lines 

□  61.  □  Frame  Relay  Services 

□  62.  □  ADSl/DSL  " 

□  63.  □  T-l/T-3  Services 


□  64.  □  ATM  Services 

□  65.  □  Managed  Services 

□  66.  □  VPN  Services 

□  67.  □  LAN-Extension  Services 

□  68.0  OC-3/OC-12 


□  69.  □  Wavelength  Services 

□  70.  □  Dark  Fiber 

□  71.  □  Other  Carrier  Services 

A  B 

None  of  the  above  (1  -  71)  □  72.  □ 


Please  indicate  the  Systems/Peripherals/Software/Applications/Business  Services 
that  you  are  currently  involved  in  purchasing  or  plan  to  purchase:  (check  all  that  apply) 

A.  Currently  involved  in  purchasing  B.  Plan  to  purchase 


SYSTEMS/PERIPHERALS  - 

A  B 

□  01.  □  Laptops/Notebooks 

□  02.  □  Desktops 

□  03.  □  Intel-Based  Servers 

□  04.  □  Rise-Based  Servers 

□  05.  □  Print  Servers 

SOFTWARE/APPUCATIONS  _ 

A  B 

□  14.  □  Desktop/Server  Operating 

Systems 

□  15.  □  Network  Management 

□  16.  □  Systems  Management 

□  17.  □  Directory  Services 

□  18.  □  E-Mail 

□  19.  □  Groupware 


A  B 

□  06.  □  Fax  Servers 

□  07.  □  Remote  Access  Servers 

□  08.  □  Video  Servers 

□  09.  □  Mid-Range  Systems 

(including  workstations) 


A  B 

□  10.  □  Mainframes 

□  11.  □  Printers 

□  12.  □  Enclosure  x/Racks/Fumiture 

□  13.  □  Other  Computers/ 

Peripherals 


□  20.  □  Database  Management 

Systems 

□  21.0  Customer  Resource 

Management  (CRM) 

□  22.  □  Enterprise  Resource 

Planning  (ERP) 

0  23.0  XML  Tools 

□  24.  □  Desktop  Videoconferencing 


BUSINESS  SERVICES - 

A  B 

□  32.  □  Application  Service 
Provider  Services 


□  25.  □  Middleware 

□  26.  □  Document  Management  Tools 

□  27.  □  Site  Metering  Tools 

□  28.  □  Software  Distribution  Tools 

□  29.  □  Data  Warehousing 

□  30.  □  Applications  Development 

Tools 

□  31.  □  Other  Software/Applications 


A  B  A  B 

□  33.  □  Systems  Integration/  □  35.  □  Other  Services 

Consulting  A  B 

□  34.  □  Education/Training  Services  None  of  ,he  above  O  -  35)  □  36.  □ 


hTg  \  I  Please  indicate  the  platforms  that  are  currently  installed/planned:  (c 

J  !>j|  A.  Currently  installed  B.  Planned  for  purchase 

NFTWORK  PROTOfOK  ........ .  .  ... 

A  B 

□  Ol.D  TCP/IP  v4 

□  02.  □  TCP/IP  v6 

A  B 

□  03.  □  SNA/APPC/APPN/LU6.2 

□  04.  □  Novell  IPX/SPX 

A  B 

□  05.  □  NETBIOS/NETBUEI 

□  06.  □  NFS 

□  07.  □  Other  Network  Protocols 

A  B 

□  08.  □  Gigabit  Ethernet 

□  09.  □  Switched  Ethernet 

□  10.  □  Fast  Ethernet 

□  11.  □  Ethernet 

□  12.  □  ATM 

npVKTnP/SFRVFR  OPERATING  SYXTFMS 

A  B 

□  13.  □  Token  Rinj/Token  Ring 

Switching 

□  14.  □  Layer  3-7  Switching 

□  15.  □  FDD! 

O  16.  □  Fibre  Channel 

□  17.  □  Wireless  LANs 

A  B 

□  18.  □  DSL 

□  19.  □  ISDN 

O  20. 0  Frame  Relay 

□  21. □  Private  Line  Tl,  T3,  OC-3, 

OC-12 

D22.  □  Other  UN/WAN 

Environment 

A  B 

□  23.  □  Windows  2000 

□  24.  □  Windows  95/98 

□  25.  □  Windows  NT/Windows  2000 

□  26.  □  Novell  (NetWare  5.X,  4.X, 

3.X,  2.X) 

027.0UNUX 

A  B 

□  28.  □  Intel  based  UNIX 

□  29.  □  RISC  based  UNIX 

(incl.  SOLARIS) 

□  30.  □  IBM  MVS/VM/VSE/ESA 

□  31.  □  OS/400 

□  32.  □  Digital  VMS 

□  33.  □  Macintosh 

A  B 

□  34.0  Palm  OS 

□  35.  □  Windows  CE 

□  36.  □  Other  Network  Operating 

System 

A  B 

None  of  the  above  (1-  36)  □  37.  □ 

Continued  on  next  page... 


Continued  from  page  one... 


5. 

What  is  the  total  number  of  Servers/Clients  installed/planned  at  your  location/in  your 
entire  organization?  (check  one  box  m  each  column) 

SERVERS  c  . 

At  Location  Entire  Org. 

At  Location 

CLIENTS  _  . 

Entire  Org. 

A 

□  1.  50,000+ 

B 

□ 

c 

□  1. 

50,000+ 

D 

□ 

□  2.  10,000  to  49,999 

□ 

□  2. 

10,000  to  49,999 

□ 

□  3.  1,000  to  9,999 

□ 

□  3. 

1,000  to  9,999 

□ 

□  4.  100  to  999 

□ 

□  4. 

100  to  999 

□ 

□  5.  50  to  99 

□ 

□  5. 

50  to  99 

□ 

□  6.  10  to  49 

□ 

□  6. 

10  to  49 

□ 

□  7.  I  to  9 

□ 

□  7. 

1  to  9 

□ 

□  8.  none 

□ 

□  8, 

none 

□ 

What  is  the  estimated  number  ot  employees  in  your  entire  organization/at  your 

location?  (check  ONE  in  each  section) 


A.  Entire  organization: 

1.  □  Over  20.000 

2.  O  10,000-  19,999 

3.  □  5,000-9,999 

4.  □  2,500  -  4,999 


5.  □  1,000  -  2,499 

6.  □  500  -  999 

7.  □  499  or  less 


B.  At  your  location: 

1.  □  Over  20,000 

2.  □  10,000-  19.999 

3.  □  5,000-9,999 

4.  □  2300  -  4,999 

5.  □  1,000  -  2,499 


6.  □  500  -  999 

7.  □  250  -  499 

8.  □  100  -  249 

9.  □  99  or  less 


Which  of  the  following  hardware  platforms  are  installed/planned  in  your  company? 

(check  ALL  that  apply) 


FM]  What  is  your  scope  and  involvement  in  purchasing  decisions  lor  network  products 

|  and  services  for  your  enterprise? 

A.  Scope  (check  ONE  only) 

CORPORATE/ENTERPRISE. 
l.D  Entire  Enterprise/  3.D  Division/M ultiple 

Multiple  Enterprises  Divisions 

B.  Involvement  (check  ALL  that  apply) 

1. D  Create  Network/IT  4.D  Evaluate 

Strategy  Products/Services 

2. D  Recommend/Specify  5.D  Determine  the  Need 

Brand  6.D  None 

3. D  Approve  Purchase 

2.0  Multinational  4.C  Department 

Enterprise  5.0  None 

A  -  Servers 

1.  □  IBM  (Mainframes)  5-  □  Unisys 

2.  □  IBM  RS/6000  6-  □  H  P 

3.  □  IBM  AS/400  7.  □  Other 

4.  □  CompaqDigital/ 

Tandem 


B  -  Workstations/Desktops/Laptops 

1.  □  Sun  Microsystems  5.  □  Dell 

2.  □  H-P  6.  C  Gateway 

3.  □  CompaqfDigital  7.  □  Fujitsu 

4.  □  IBM  8.  □  Other 


What  is  the  estimated  gross  revenue  of  your  entire  company/institution? 

(check  ONE  only) 


1.  □  $20  Billion  or  More 

2.  □  $10  Billion  to  $19.9  Billion 

3.  □  $1  Billion  to  $9.9  Billion 

4.  □  $500  Million  to  $999.9  Million 


5.  □  $100  Million  to  $499.9  Million 

6.  □  $50  Million  to  $99.9  Million 

7.  □  $10  Million  to  $49.9  Million 

8.  □  $5  Million  to  $9.9  Million 


9.D  $4.9  Million  or  Less 
10C  None  of  the  above 


For  faster  service,  subscribe  online  at: 

http://www.nwwsubscribe.com/b402 


For  which  areas  outside  of  the  U.S.A.  do  you  have  purchase  influence? 

(check  ALL  that  apply) 


1.  □  Europe 

2.  □  Asia 


3.  □  South  America 

4.  □  Australia 


5.  □  Middle  East 

6.  □  Africa 


□  Canada 

□  None 


SIGN  UP  and  Start  Immediately  Receiving  our 
FREE  Weekly  e-Newsletter  This  Week  on  NWFusion 
and  easily  stay  current  on  today’s  networking  challenges! 


□YES!  Start  my  subscription  immediately. 


My  e-mail  address  is: 


Your  colleagues  may  also  qualify  for  a  FREE  subscription! 

Please  list  below  names,  job  functions,  e-mail  addresses  and  phone  numbers  of  other  individuals  at  your  location  who  might  also  benefit  from  a  FREE  subscription  to  |\j6tW0rkW0l1d 

?  NAME 

NAME 

JOB  FUNCTION 

JOB  FUNCTION 

E-MAIL  ADDRESS 

E-MAIL  ADDRESS 

PHONE  NUMBER 

PHONE  NUMBER 

NAME 

NAME 

JOB  FUNCTION 

JOB  FUNCTION 

E-MAIL  ADDRESS 

E-MAIL  ADDRESS 

PHONE  NUMBER 

PHONE  NUMBER 

FORM  0002 


NO  POSTAGE 
NECESSARY 
IF  MAILED 
IN  THE 

UNITED  STATES 


BUSINESS  REPLY  MAIL 

FIRST-CLASS  MAIL  PERMIT  NO  1752  NORTHBROOK  IL 

POSTAGE  WILL  BE  PAID  BY  ADDRESSEE 


PO  BOX  3091 

NORTHBROOK  IL  60065-9928 
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etWorker 


SERVICES  AND  STRATEGIES 
FOR  TYING  TELEWORKERS  TO  THE  ENTERPRISE 


Adventures  in  Bluetooth 


Our  editor  discovers  no  wires  doesn’t  mean  no  new  hassles. 


The  HP  DesKjet  995c  with  integrated  Bluetooth  was  quick  to  install,  but 
prone  to  paper  jams. 


■  BY  KEITH  SHAW 


The  promise  of  Bluetooth?  A  simple  way 
to  connect  devices  wirelessly  within  a 


■  Mitel  Networks  recently  intro 
duced  the  Mitel  Networks  3050 
Integrated  Communications 
Platform.  Geared  to  offices  with  up 
to  eight  users,  the  product  provides 
integrated  voice  and  data,  wired  and 
802.11b  wireless  LAN,  IP  telephony, 
router,  firewall  and  VPN.  ICP  includes 
a  Web  server,  collaboration  tools  and 
Web  management.  The  platform  is 
built  using  a  combination  of  Linux,  IP 
and  Session  Initiation  Protocol,  a  real¬ 
time  communication  protocol  for  IP 
voice,  video  and  instant  messaging 
that  is  gaining  momentum.  ICP  will  be 
available  in  November  and  costs 
about  $2,000  for  a  three-phone  setup. 
www.mitel.com 

■  Linksys  recently  debuted  the 

EtherFast  Cable  Modem.  Based  on 
DOCSIS  1.0  and  upgradable  to  the  1.1 
specification,  the  modem  includes  a 
Universal  Serial  Bus  and  Ethernet 
port.  SNMP  monitoring  lets  service 
providers  remotely  download  up¬ 
grades  and  troubleshoot  problems. 
Available  now,  the  modem  costs  $130. 
www.linksys.com 

■  Several  home  entertainment  com¬ 
panies  —  Kenwood,  SONICblue, 
Ucentric  Systems, Turtle  Beach  and 
Escient  Convergence  —  recently 
announced  they  will  use  HomePNA 
technology  to  distribute  digital  audio 
and  video  content  throughout  the 
home.  Currently,  HomePNA  provides 
10M  bit/sec  speeds.  Version  3.0,  ex¬ 
pected  in  the  fall,  will  provide  100M 
bit/sec.  Essential  for  entertainment 
applications,  HomePNA  provides 
quality  of  service  for  prioritizing  data, 
audio  and  video  traffic  delivery. 
www.homepna.org 


short  range, 
making  it  an 
ideal  technolo¬ 
gy  for  the  home 
or  small  office. 

But  based  on  our  tests  of  some  of  the  first 
generation  of  products,  Bluetooth  also 
promises  to  increase  your  volume  of  help 
desk  calls  as  remote  workers  struggle  with 
difficult  installations  and  overly  technical 
software. 

You  may  have  heard  Bluetooth  described 
as  enabling  a  personal-area  network 
(PAN),  which  is  much  smaller  than  a  wire¬ 
less  LAN  or  WAN  in  terms  of  range  and 
usage.  Bluetooth  devices  operate  in  the  2.4- 
GHz  frequency,  the  same  as  802.11b  wire¬ 
less  LANs  and  many  cordless  phones. 


Products 
transmit  data 
within 
approximate¬ 
ly  a  30-feet 
range,  at  speeds  of 
about  1M  bit/sec. 

Because  the 
technology  lends 
itself  so  well  to 
remote  and 

mobile  environ¬ 
ments,  we  were 
curious  to  see  how 
easy  (or  difficult)  it 
is  to  get  various  Bluetooth-enabled  prod¬ 
ucts  to  connect,  or  “discover”  each  other. 
We  also  wanted  to  see  whether  a  remote 


worker  with  average  technical  knowledge 
could  successfully  set  up  a  Bluetooth  net¬ 
work,  or  whether  IT  would  need  to  be 
called  in. 

The  players 

For  our  test,  we  selected  a  sampling  of 
devices  from  a  wide  number  available. 
These  include: 

•  Bluetooth  PC  Cards  from  TDK  Systems 
and  Troy  Wireless  for  connecting  note¬ 
book  PCs.  We  installed  the  cards  onto  an 
IBM  A31  ThinkPad  with  Windows  XPThe 
laptop  didn’t  have  integrated  Bluetooth, 
but  had  an  integrated  802.11b  wireless 
antenna. 

•  Compaq’s  H3870  iPaq  Pocket  PC  for 

connecting  a  PDA.  The  device  includes 
an  embedded  Bluetooth  module. 

•  Widcomm’s  BlueGate  2100  access 
point  for  connecting  Bluetooth  devices 
to  the  Internet.  The  device  includes  an 
Ethernet  port  for  connecting  to  a  broad¬ 
band  modem  or  router.  For  this  test,  we 
only  evaluated  the  Internet  connectivity 
features,  but  the  product  also  lets 
Bluetooth  devices  access  a  LAN. 

•  Troy’s  WindConnect  print  adapter.  To 
let  Bluetooth  devices  print,  we  attached 
the  adapter  to  a  Hewlett-Packard  Laserjet 
6L  and  HP’s  Deskjet  995c  Laserjet  printer, 
which  contains  an  embedded  Bluetooth 
module. 

We  didn’t  test  Bluetooth-enabled 
mobile  phones,  but  travelers  might  find 
them  useful.  Connecting  a  PC  via  Blue 
tooth  to  a  mobile  phone  that  can  dial  out 
on  a  next-generation  wireless  network 
will  be  a  heavily  used  application.  In  the 
U.S.,  Bluetooth-enabled  phones  are  start 
ing  to  appear,  including  Sony  Ericsson’s 
T68  model. 


Net  Results 


H3870  iPaq  Pocket  PC  with  integrated  Bluetooth 

Company:  Compaq.  Price:  $650.  Pros:  Preinstalled  Bluetooth  software; 
discovered  some  Bluetooth  devices  easily.  Cons:  Failed  to  discover  the  access 
point;  discovered  the  printer,  but  failed  to  transmit  a  print  job. 

Bluetooth  PC  card  from  TDK  Systems _ 

Company:TDK  Systems.  Price:  $135.  Pros:  Easy  setup;  good  software.  Cons: 
May  be  difficult  to  buy  in  U.S.;  updated  driver  required  for  Windows  XP 
compatibility. 

WindPort  Bluetooth  Wireless  PC  card 

Company:Troy  Wireless.  Price:  Between  $125  and  $150.  Pros:  Works  well 
withTroy  Wireless’ WindConnect  printer  adapter.  Cons:  Somewhat  difficult  to 
set  up. 


BlueGate  2100  access  point 

Company:  Widcomm.  Price:  $800.  Pros:  Allows  wireless  Internet  access 
without  setting  up  an  802.11b  network;  worked  well.  Cons:  Intermediate-level 
setup  required;  no  printed  documentation;  expensive  for  SOHO  environments. 

Troy  Wireless  Wind  Connect  printer  adapter _ 

Company:Troy  Wireless.  Price:  Between  $150  and  $200.  Pros:  Good  way  to 
Bluetooth  enable  an  existing  printer;  less  expensive  than  buying  an  integrated 
Bluetooth  printer.  Cons:  Somewhat  difficult  to  set  up. 


HP  deskjet  995c  with  integrated  Bluetooth _ 

Company:  HP.  Price:  $400.  Pros:  Good  color  printer;  quick  installation. 
Cons:  Paper  jammed  often;  expensive  if  Bluetooth  is  all  you’re  after. 


NetworkWorld 


See  Bluetooth,  page  2F 
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There's  a  Dell  PowerEdge  server 
for  every  kind  of  business. 

From  "kind  of  start  up"  to  "kind  of  FORTUNE  500.®" 
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No  matter  the  size  of  your  company,  we've  got  a  server  that  fits.  Dell  PowerEdge  servers  with  Windows"  2000  Server  have  many  amazing 
"abilities":  scalability,  availability,  manageability  and  serviceability.  So  they  grow  with  your  business,  minimize  downtime,  are  easy  to  integrate  and 
even  easier  to  support.  No  matter  what  your  business  needs  -  from  file/print  to  database  management  -  you  can  choose  a  PowerEdge"”  server  with 
Microsoft®  Windows®  2000  Server  operating  system  that  is  right  for  you.  And,  by  dealing  direct  with  Dell,  you  get  a  system  customized  to  fit  your  business 
needs,  at  an  affordable  price,  backed  by  our  award-winning  service  and  support.  It's  a  nice  mix  of  exactly  the  server  you  need  with  exactly  the  operating  system  you  want. 

Dell  Rated  #1  in  Intel  Server  Satisfaction 

Technology  Business  Research 
Corporate  IT  Buying  Behavior  and  Customer  Satisfaction  Study 

3rd  Quarter 
-  December  2001 
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QuickLease' 

for  qualified  customer* * 


Dell  Small  Business 


PowerEdge"  1500SC  Server 

NEW  Simple  and  Strong  Server 

•  Intel*  Pentium*  III  Processor  at  1.13GHz 

•  Dual  Processor  Capable 

•  128MB  133MHz  ECC  SDRAM  (up  to  4GB) 

•  18GB5  (10K  RPM)  Hot-Swap  Ultra3  SCSI  Hard  Drive 

•  Embedded  Dual-Channel  Ultra3  SCSI  Controller 

•  Embedded  Gigabit  NIC 

•  1-Yr  Next  Business  Day  On-Site  Service)  1-Yr  Limited  Parts 
Warranty,2 1-Yr  24x7  Dedicated  Server  Phone  Tech  Support 


S1299  © 


QuickLoan:  $35/mo.,  48  mos!1 

E-VALUE  Code: 
11099-290412 


Recommended  upgrades: 

•  NEW  PowerConnect*  2124*  24-Port  Unmanaged  Switch 
with  Gigabit  Port,  add  $299 

•  System  Including  Small  Business  Server  2000  and 
Memory  Upgrade  to  256MB  is  $2699 


PowerEdge™  1650  Server 

NEW  Highly  Available  1U  Rack-Optimized  GP  Server 

•  Intel*  Pentium*  III  Processor  at  1.13GHz 

•  Dual  Processor  Capable 

•  128MB  133MHz  ECC  SDRAM  (up  to  4GB) 

•  18GB5  (10K  RPM)  Hot-Swap  Ultra3  SCSI  Hard  Drive 

•  Dual  Embedded  Gigabit  NICs 

•  Hot-Plug,  Redundant  Cooling  Fans 

•  Optional  Embedded  Dual-Channel  RAID  Solution 

•  Optional  Redundant  Power  Supplies 

•  3-Yr  Next  Business  Day  On-Site  Service1 


$1699  © 


QuickLoan:  $45/mo„  48  mos" 

E-VALUE  Code: 
11099-290416 


Recommended  upgrade: 

•  System  Including  Windows*  2000  Server  is  $2499 


PowerEdge"  2500  Server  PowerVault™  PV715N  Storage 


Robust  and  Scalable  Server 

•  Intel*  Pentium*  III  Processor  at  1.13GHz 

•  Dual  Processor  Capable 

•  128MB  133MHz  ECC  SDRAM  (up  to  6GB) 

•  18GB5  (10K  RPM)  Hot-Swap  Ultra3  SCSI  Hard  Drive 

•  Embedded  Dual-Channel  Ultra3  SCSI  Controller 

•  Embedded  Intel®  10/100  NIC 

•  Hot-Plug,  Redundant  Cooling  Fans 

•  Optional  Hot-Plug,  Redundant  Power  Supplies 

•  Optional  Embedded  Dual-Channel  RAID  Solution 

•  3-Yr  Next  Business  Day  On-Site  Service3 


$1899 


QuickLoan:  $50/mo„  48  mos!’ 

E-VALUE  Code: 
11099-290418 


©! 


Recommended  upgrades: 

•  PowerConnect"  3024*  24-Port  Managed  Switch,  add  $699 

•  System  Including  Windows*  2000  Server  is  $2699 


NEW  NAS  File  Sharing  Storage 

•  Offloads  Storage  Load  from  Desktops  and  Servers 

•  Snap  Shot  Capability  for  Backing  up  Network  Data 

•  Intel®  Celeron®  Processor  at  900MHz 

•  256MB  SDRAM  (up  to  512MB) 

•  160GB  IDE  Hard  Drive  -  Four  40GB  Bays 

•  Dual  10/100  Ethernet  Ports 

•  SCSI  Port  for  Local  Backup 

•  Multi-Platform  Support  of  PC,  Unix,  Apple,  and  Novell 

•  Powered  by  Windows®  Operating  System 

•  1-Yr  Next  Business  Day  On-Site  Service)  3-Yr  Limited  Parts 
Warranty)  Lifetime  24x7  Dedicated  Server  Phone  Tech  Support 


$1799 


QuickLoan:  $48/mo„  48  mos" 

E-VALUE  Code: 


' 11099- 290417n 


pentium®/// 


Servers  for  any  size  business. 


Easy  as 


D0LL 


Visit  www.dell.com/networkworld  or  call  toll  free  1-877-953-3355. 


Call:  M  F  7a  8p  Sat  8a  5p  CT 

Pricing,  specifications,  availability  and  terms  of  offer  may  change  without  notice  Taxes  and  shipping  charges  extra,  and  vary  U.S.  Dell  Small  Business  (BSD  and  BASD)  new  purchases  only  Dell  cannot  be  held 

responsible  for  errors  in  typography  or  photography. 

•This  device  has  not  been  approved  by  the  Federal  Communications  Commission  for  use  in  a  residential  environment  This  device  is  not,  and  may  not  be,  offered  for  sale  or  lease,  or  sold  or  leased  tor  use  in  a 

residential  environment  until  the  approval  of  the  FCC  has  been  obtained 

'For  a  copy  ot  our  Guarantees  or  Limited  Warranties  write  Dell  USA  IP.  Attn  Warranties.  One  Dell  Way.  Round  Rock.  Texas  78682  'Service  may  be  provided  by  third  party  Technician  will  be  dispatched,  if 
necessary,  following  phone-based  troubleshooting  To  receive  Next-Business-Day  service.  Dell  must  notify  service  provider  before  6  pm  (depending  on  service  contract)  customers  time  Availability  varies  'For  hard 
doves.  GB  means  1  billion  bytes,  accessible  capacity  vanes  with  operating  environment  ’Monthly  payment  is  based  on  a  48-month  12  49%  interest  rate  tor  qualified  business  customers  Your  interest  rate  and 
monthly  payment  may  be  same  or  higher,  depending  on  your  creditworthiness.  OFFER  VARIES  BY  CREDITWORTHINESS  OF  CUSTOMER  AS  DETERMINED  BY  LENDER  Taxes,  fees  and  shipping  charges  are  extra  and 
may  vary  Minimum  transaction  size  of  $500  is  required  Maximum  aggregate  financed  amounts  not  to  exceed  $25,000  Not  valid  on  past  orders  or  financing  QuickLoan  is  from  CIT  OnLme  Bank  to  Dell  Small 
Business  (BSD|  customers  with  approved  credit  'QuickLease  arranged  by  Dell  Financial  Services  LR.  an  independent  enbty  to  qualified  Small  Business  (BSD  and  BASD)  customers  0%  leasing  otter  only 
applicable  for  a  24-nwnth  Fan  F.larket  Value  (FMV)  QuickLease  and  valid  on  liardware  products  only  Applicable  taxes,  fees  and  shipping  not  included.  Minimum  transaction  size  ol  $500  is  required.  At  the  end 
ot  the  FMV  QuickLease  term,  the  Lessee  shall  have  the  following  options  Purchase  the  equipment  tor  the  then  FMV.  renew  the  lease  or  return  the  equipment  to  the  Lessor.  Please  contact  your  Dell  Financial 
Services  representative  for  further  details  All  terms  are  subiect  to  credit  approval  and  availability  and  are  subject  to  change  without  notice.  Not  valid  on  past  orders  or  leases  Dell,  the  stylized  E  logo.  E-Value. 
PowerEdge.  PowerConnect  and  PowerVault  are  trademarks  of  Dell  Computer  Corporation,  Intel.  Intel  Inside  and  Pentium  are  liademarks  or  registered  trademarks  ot  Intel  Corporation  or  its  subsidiaries  in  the 
United  States  and  other  countries  Microsoft  and  Windows  are  registered  trademarks  of  Microsoft  Corporation.  ©2002  Oell  Computer  Corporation  All  rights  reserved 


PCs  use  genuine  Microsoft®  Windows® 
www.microsoft.com/piracy/howtotell 
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USE  THE  POWER  OF 
THE  E-VALUE  CODE. 

Match  our  latest  technology 
with  our  latest  prices  Enter  the 

E-VALUE  code  online  or  give  it 

VALUE 

to  your  sales  rep  over  the 
phone  www  dell  com/evalue 
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Bluetooth 

continued  from  page  25 

Getting  to  know  you 

With  the  exception  of  the  iPaq,  each 
product  we  tested  required  that  we 
install  software  and,  in  some  cases,  dri¬ 
vers  on  our  notebook  PC.  Because 


Compaq’s  Bluetooth  Manager  already 
was  on  the  device,  activating  Bluetooth 
on  the  PDA  was  a  simple  matter  of  click¬ 
ing  a  menu  item  called  “Turn  radio  on.” 

Installing  the  Bluetooth  PC  Cards  on 
the  notebook  was  as  easy;  just  insert  the 
card  into  the  PC  Card  slot  and  install  the 
driver  from  the  CD-ROM.  Using  Windows 


XP  made  it  easier  because  the  operating 
system  is  Bluetooth-friendly.  Setting  up 
the  access  point  and  both  printers  took 
considerably  longer  because  we  had  to 
install  printer  drivers  and  configure  net¬ 
work  connectivity. 

Once  we  got  all  the  devices  set  up  and 
within  range,  we  used  the  software  on 


the  notebook  to  discover  another 
Bluetooth  device.  While  you  need  to  ini¬ 
tiate  this  process  manually,  discovery 
doesn’t  require  line  of  sight  between 
devices.  At  this  point,  the  software  sends 
a  signal  looking  to  see  whether  any 
Bluetooth  devices  are  in  range.  On 
returning  a  list  of  “found"  devices,  you 
simply  select  the  one  to  which  you  want 
to  connect. 

Once  we  got  two  devices  to  discover 
each  other,  we  found  there  really  isn’t 
too  much  they  can  do.  When  you’re  con¬ 
necting,  for  example,  a  PC  to  PC,  or  a  PC 
to  PDA,  you  can  share  files  or  exchange 
“business  cards,”  similar  to  beaming 
your  contact  information  onto  a  PDA. 

More  specific  devices  (such  as  the 
access  points  and  printers)  contain  “pro¬ 
files”  that  let  you  connect  to  the  Internet 
or  print  a  document.  Once  the  software 
discovers  the  other  Bluetooth  device, 
you  then  choose  the  service  you  want  to 
activate.  Depending  on  your  needs,  this 
could  involve  one  step  (connect  to 
access  point  for  Internet)  to  up  to  three 
or  four  steps  (initial  connection  to  the 
printer). 

Easy  for  whom? 

Your  remote  workers  will  be  comfort¬ 
able  installing  a  Bluetooth  PC  Card  and 
any  accessory  that  connects  to  a  PDA. 
But  for  connections  to  a  Bluetooth 
access  point  or  a  printer,  the  IT  depart¬ 
ment  will  probably  want  (or  need)  to 
get  involved. 

Take  for  instance  the  installation  of  the 
Bluetooth  access  point.  It  required  that 
we  plug  the  device  into  our  Ethernet 
connection,  locate  the  access  point’s 
media  access  control  (MAC)  address 
(which  in  this  case  was  affixed  to  the 
access  point  but  required  removal  of  the 
plastic  case),  and  input  the  address  on  a 
different  networked  computer  to  find  its 
IP  address.  We  had  to  install  the  software 
on  the  notebook  so  it  could  discover  the 
access  point.  While  some  remote  work¬ 
ers  are  comfortable  with  this  level  of 
technical  installation,  they’re  the  minori¬ 
ty.  Moreover,  when  it  comes  to  tweaking 
IP  address  and  MAC  addresses,  many  IT 
departments  want  to  handle  it  them¬ 
selves  to  avoid  trouble  down  the  road. 

Bluetooth  printing  frustrated  us  even 
more.  Not  only  did  we  have  to  follow  the 
discovery  steps,  but  we  also  had  to 
ensure  the  printer  was  connecting  via 
the  correct  COM  port.  The  Troy  printer 
adapter  software  had  us  installing  virtu¬ 
al  COM  ports  —  an  exercise  that  could 
push  remote  workers  and  many  an  IT 
administrator  to  throw  the  notebook 
against  the  wall. The  documentation  was 
of  no  help,  by  the  way. 

Last,  we  learned  the  Bluetooth  soft¬ 
ware  that  some  companies  provide  is 
still  bogged  down  with  unfriendly  tech¬ 
nical  terms  that  could  intimidate  your 
remote  workers,  and  some  pretty  unintu¬ 
itive  interfaces.  Even  something  as  sim¬ 
ple  as  finding  where  we  transferred  a 
particular  file  often  involved  several 
clicks  on  the  software.  ■ 


Pi  te  ;ing  your  network  is  more  important  than  ever— not  to  mention  challenging.  When  you  have  more  security  risks 
ti  '  •  to  handle  them,  the  new  Web  Inspector  is  a  slam  dunk  for  reliable,  hassle-free  Internet  filtering.  Whether  you 
nt  .  -  age  web  access  by  individual  or  group,  handle  a  team  of  50  or  50,000  or  take  advantage  of  just  a  few 

or  *.  cast  mizable  reports,  Web  Inspector  lets  you  call  the  shots.  Add  Web  Inspector  to  your  IT  game  plan  — 

can  ‘  >•  s  s  for  a  free  trial  today! 
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RELIABILITY 


#  IDC 


If //I  Internet  Manager 

by  EIRON  SOFTWARE 


FLEXIBILITY 


EASE-OF-USE 


NEW  Web  Inspector  v6 

The  Best  Choice  for  Internet  Filtering 


THIS  IS  PULLING  5  G'S  JUST  BY  TURNING  ON  YOUR  COMPUTER. 


Performance  Guarantee  Comparison  Chart 

Qwest 

UUNET 

Superior  Performance 

Off-Net  SLA 

YES 

NONE 

Qwest 

North  American  Latency 

50ms 

65ms 

Qwest 

Trans  Atlantic  Latency 

65ms 

120ms 

Qwest 

Trans  Pacific  Latency 

130ms 

NONE 

Qwest 

Intra  Europe  Latency 

35ms 

65ms 

Qwest 

Intra  Asia  Latency 

100ms 

NONE 

Qwest 

^  Packet  Delivery 

99.50% 

99.00% 

Qwest  j 

Source:  Qwest*  and  WorldCom*  SLA  terms  and  conditions  published  on  www.qwest.com  and  www.worldcom.com  as  of  3/2002. 


This  is  Qwest  Dedicated  Internet  Access.  People  obsessed  with  moving  data 
and  video  faster  and  more  securely.  This  is  completing  one  of  the  first  coast- 
to-coast  OC-192  networks.  This  is  not  being  satisfied  until  we  bring  you  the 
first  OC-768  network,  and  then  still  not  being  satisfied  until  we  bring  you 
something  even  faster  and  more  reliable.  This  is  Qwest  working  faster  to 
help  you  work  better.  This  is  realizing  fast  isn't  fast  enough  anymore.  This  is 
one  reason  more  than  half  of  the  Fortune  500®  ride  the  light. 
qwest.com  1-800-RIDE-QWEST  1-800-743-3793  ext  1 320 


Voice  Solutions  Data  Solutions 


Internet  Solutions  Managed  Solutions 

L Dedicated  Internet  Access 


ride  the  light 

Qwest.' 


Qwest  DIA  is  available  throughout  the  United  States.  Qwest  DIA  service  also  provides  high-speed  Internet  access  to  more  than  240  major  cities  in  19  European  countries.  However,  customers  in  the  states  of  AZ,  CO,  ID,  IA,  MN,  MT,  ND,  NE,  NM,  OR,  SO,  UT,  WA 
and  WY  will  have  their  Qwest  Internet  services  provided  in  conjunction  with  a  separate  Global  Service  Provider  (GSP).  This  provider  will  supply  customers  with  connectivity  to  the  global  Internet  in  those  states.  ©2002  Qwest  Communications  International  Inc 
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Microsoft  and  NetlQ  make  it  easier  to  manage  your  entire  Windows 

.  v  nvironment.  You’ve  got  servers  running  Windows®  2000  here, 
servers  'unning  Windows  NT®  in  the  next  building,  and  a  mix  of  platforms 
running  in  your  plants  overseas.  Managing  a  global-class  enterprise  sure 

means  a  lot  of  running. 

Which  s  vvny  Microsoft  and  NetlQ  teamed  up  to  deliver  a  way  to  manage 


your  entire  Windows  Server  environment  from  one  very  convenient  place:  your 
desk.  It  starts  with  Microsoft®  Operations  Manager  2000,  the  most  effective 
way  to  manage  all  your  Windows  2000-based  servers  and  applications,  from 
proactive  alerting  to  performance  monitoring  to  event  collection  and  reporting. 

By  adding  NetlQ  Extended  Management  Pack  modules,  you  can  also 
monitor  Windows  NT  4.0  as  well  as  other  Microsoft  servers;  mission-critical 


ration  And  NetlQ  Corporation.  All  rights  reserved.  Microsoft.  Windows,  and  Windows  NT  are  either  registered  trademarks  or  trademarks  of  Microsoft  Corporation  in  the  United  States  and/or  other  countries.  The  names  of  actual  companies  and  products  mentioned 
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ipplications  like  Oracle  RDBMS  and  Lotus  Domino;  and  large-scale  enterprise 
ilatforms  like  UNIX  and  NetWare.  All  from  one  centralized  console. 

Which  means  that  you  spend  a  lot  less  time  running  around  your 
nterprise,  and  a  lot  more  time  simply  and  effectively  managing  it.  Get  a 
ead  start  on  reducing  your  management  burden  with  a  visit  to  netiq.com 
manageability  today.  Software  for  the  Agile  Business. 


Microsoft 


QnettH) 


Irein  may  be  the  trademarks  of  their  respective  owners. 


Find  out  about  problems  faster. 


Fix  problems  faster. 


See  how  at  keynote.com/freetrial 


Internet  problems  can  be  monsters  to  pinpoint  in  today’s  complex  e-Business  infrastructure.  Keynote  helps  improve  operational 
efficiency  by  giving  you  the  information  you  need  to  isolate  performance  problems  faster  and  with  fewer  resources.  In  as  few  as 
three  clicks,  we  enable  you  to  accurately  determine  where  your  problems  are  and  who  needs  to  resolve  them.  So  you  don’t  waste 
precious  time  speculating  whether  it’s  a  network,  server  or  application  problem. 

At  Keynote,  benchmarking  is  only  the  beginning.  Discover  how  our  completely  outsourced  services  help  you  diagnose  and  resolve 
problems  faster.  No  installation  is  required  to  get  started.  To  sign  up  for  a  free  two-week  trial,  go  to  www.keynote.com/freetrial, 
or  call  1-800-KEYN0TE  ext.  2110. 


FREE  TWO-WEEK  TRIAL 

www.keynote.com/freetrial 


rA  KEYNOTE’ 

^  The  Internet  Performance  Authority 
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■  Sendmail  last  week  announced  a 
group  calendaring  and  scheduling 
software  package  designed  for  mobile 
devices.  Sendmail  Calendar  Server 
lets  enterprise  customers  of  Send- 
mail's  back-end  Internet  e-mail  routing 
and  hosting  software  offer  their  end 
users  Web-based  and  wireless  access 
to  calendar  information.  It  supports 
some  aspects  of  a  calendaring  and 
scheduling  protocol  under  develop¬ 
ment  by  the  Internet  Engineering  Task 
Force.  The  IETF  Calsched  protocol  will 
let  users  share  calendaring  informa¬ 
tion  over  the  Internet  regardless  of  the 
calendaring  or  scheduling  package 
their  companies  used.  Sendmail  Cal¬ 
endar  Server  runs  on  Sun’s  Solaris 
operating  system  and  will  soon  be 
available  for  Linux.  It  costs  from  $2  to 
$15  per  user,  depending  on  the  num¬ 
ber  of  users,  www.sendmail.com 

■  Network  Instruments,  a  maker 
of  network  performance  manage¬ 
ment  software  and  protocol  analysis 
tools,  this  week  will  release  Ob¬ 
server  8.1.  Network  Instruments 
has  integrated  a  complete  set  of 
wireless  troubleshooting  and  mea¬ 
surement  tools  into  the  Observer 
product  line,  providing  support  for 
Wireless  802.11,  Ethernet,  Token  Ring 
and  FDDI  LANs  in  one  package. 
Users  install  Observer  at  a  Microsoft 
Windows  workstation  and  probes  at 
wireless  access  points.  Customers 
can  collect  information  about  signal 
quality,  wireless  performance.  Users 
of  Observer  8.0,  released  in  October 
2001,  can  receive  the  wireless  fea¬ 
tures  at  no  extra  cost.  Pricing  for 
Observer  8.1  is  $1,000.  Expert 
Observer  costs  $2,900,  and  the 
Observer  Suite  costs  $4,000. 
www.networkinstruments.com 

■  Microsoft  last  week  released  a 
patch  for  a  security  hole  in  its  SOL 
Server  7.0  and  2000  databases  that 
could  let  attackers  execute  code  of 
their  choice  on  an  affected  system 
by  exploiting  a  buffer  overflow  vul¬ 
nerability.  For  more  information  see 
www.Microsoft.com/technet/secur 
ity/bulletin/ms02-020.asp. 


Honeynet  looks  to  sting  hackers 


■  BY  ELLEN  MESSMER 

A  group  of  30  computer  security  re¬ 
searchers  who  set  up  inexpensive  “fake” 
networks  to  observe  how  hackers  behave 
as  they  break  into  them  are  finding  out 
about  new  software  vulnerabilities  and 
warning  the  public. 

The  security  professionals,  calling  them¬ 
selves  The  Honeynet  Project,  quietly  main¬ 
tain  a  distributed  network  of  Windows  NT, 
Linux,  Sun  Sparc  servers  and  desktops 
accessible  via  the  Internet  to  monitor  how 
hackers  go  after  various  operating  systems. 
As  research  volunteers  operating  on  a 
shoestring,  they’ve  collected  a  wealth  of 
data  —  and  at  times  found  out  about  new 
attack  tools  and  exploits  of  the  “blackhat” 
underworld  of  hackers. 

In  January  for  instance,  the  Honeynet 
Project  discovered  hackers  could  use  a 


management  feature  called  the  CDE 
Subprocess  Control  Service  to  take  root 
control  of  Solaris. 

The  Honeynet  Project  shared  that  insight 


Not  so  sweet  honey 

The  Honeynet  Project  was  set  up  to 
trap,  monitor  and  record  hackers. 
Also  known  as  deception  systems  or 
honeypots,  such  networks  are 
designed  to  look  like  real  networks 
with  real  resources  to  attack.  The 
driving  ideas  behind  honeypots  are: 


Help  other  users  and  the  industry  with 
early  warning  and  prediction  data. 


•  Identify  new  hacking  tools  and  tactics. 

•  Provide  forensic  evidence  to  post¬ 
attack  investigators. 


with  the  CERT  Coordination  Center,  which 
determined  the  matter  was  serious  enough 
to  issue  security  alerts  advising  Solaris 
users  to  turn  off  CDE  until  the  buffer-over¬ 
flow  vulnerability  was  patched. 

But  most  days,  according  to  Jed  Haile, 
project  engineer  at  Nitro  Data  Systems 
and  volunteer  hacker-watcher,  the  Honey¬ 
net  records  hacker  activity  that  is  of  less 
scientific  interest  but  is  astonishing  in  its 
intensity  and  criminality 

Hackers  that  fall  into  the  Honeynet  are 
seen  to  swap  stolen  telephone  and  credit 
card  numbers,  try  to  break  into  other  pos¬ 
sibly  more  “real”  networks  and  even  discuss 
using  the  Internet  for  terrorist  attacks. 

In  general,  experience  shows  that  hack¬ 
ers  frequently  operate  as  gangs  —  and  they 
love  to  talk. 

“The  ‘blackhats’  have  a  compulsive  need 

See  Honeynet,  page  34 


U.S.  Navy  pares  down  paper  stash 

Enigma  software  helps  the  Navy  organize  manufacturers'  tech  documentation. 


No  more  heavy  lifting:  Naval  technicians  who  repair 
hovercraft  can  now  reference  digital  files  instead  of 
450-page  paper  manuals  to  get  the  service  materials 
they  need. 


BY  ANN  BEDNARZ 

BOSTON  — The  U.S.  Navy  is  taking 
steps  to  digitize  some  of  its  technical 
manuals,  saving  thousands  of  dollars 
in  printing  costs  and  making  it  easier 
for  repair  technicians  to  access  the 
documentation  they  need. 

Naval  engineers  charged  with 
repairing  hovercraft  vessels  once  had 
to  reference  gargantuan  paper  man¬ 
uals  and  flip  between  engineering 
diagrams,  parts  catalogs  and  service 
bulletins  to  do  the  job.  Now  the  Navy 
is  working  to  consolidate  its  hover¬ 
craft  maintenance  resources  and 
make  them  available  for  delivery  on 
CDs  and  over  the  Web.  It’s  doing  this 
with  the  help  of  software  maker 
Enigma. 

Enigma  calls  what  it  does  asset  life 
cycle  management. The  company  sells  its 
software  to  manufacturers  that  sell  com¬ 
plex  capital  equipment  and  to  large  com¬ 
panies  that  buy  and  operate  such  equip¬ 
ment.  For  manufacturers  including  GE 
Aircraft  Engines,  Pratt  &  Whitney  and 
Fterkins  Engines,  Enigma  helps  capture 
after-market  sales  of  replacement  parts 
and  service  revenue.  For  organizations 
such  as  the  Navy  Enigma  helps  manage 


product  maintenance  content  from  mul¬ 
tiple  vendors.  Enigma’s  competition  is 
largely  homegrown  systems  and,  to  some 
degree,  product  life  cycle  management 
software. 

The  Navy’s  work  with  Enigma  is  under 
way  at  Boston  Planning  Yard,  a  division  of 
the  Puget  Sound  Naval  Shipyard.  So  far  it 
is  confined  to  the  Navy’s  hovercrafts,  for¬ 
mally  known  as  landing  craft  air  cushion 
(LCAC). These  amphibious  landing  craft, 
which  can  carry  up  to  75  tons,  transport 


weapons  systems,  equipment,  cargo 
and  personnel  from  ship  to  shore. 

Home  base  for  90  LCACs,  Boston 
Planning  Yard  is  responsible  for  dis¬ 
seminating  LCAC  maintenance  and 
repair  information  to  Navy  techni¬ 
cians  around  the  world.  Part  of  what 
makes  that  task  complicated  is  that 
the  Navy  has  several  LCAC  models, 
built  under  different  contracts  and 
often  with  only  slightly  different  hull 
designs,  says  Bill  Kone,  a  supervisory 
mechanical  engineer  at  Boston 
Planning  Yard.  This  translates  into 
thousands  of  pages  of  manufacturer- 
provided  product  support  documen¬ 
tation  that  Kone’s  group  needs  to 
maintain  and  distribute  to  far-flung 
users. 

Paper  blizzard 

In  total,  Kone  is  responsible  for  120 
manuals,  averaging  450  pages  each.  His 
team  so  far  has  converted  75  manuals  to 
Enigma’s  3C  Platform,  a  Web-based  appi; 
cation  that  lets  the  Navy  pull  together  a 
range  of  technical  documentation  from 
disparate  sources,  including  repair  and 
maintenance  manuals,  parts  catalogs, ser 
vice  bulletins  and  repair  histories. 

U.S.  Navy,  page  34 
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Configuresoft  boosts  admin,  controls 

ECM  4.0  introduces  delegation  features,  change  management,  compliance  module. 


■  BY  JOHN  FONTANA 

Configuresoft  this  week  will 
add  a  number  of  enhancements 
to  its  configuration  management 
software  designed  to  help  com¬ 
panies  control  who  can  use  the 
software  and  how, and  to  support 
automatic  updates  to  configura¬ 
tion  settings. 

With  Enterprise  Configuration 
Manager  (ECM)  4.0,  the  com¬ 
pany  is  introducing  role-based 
permissions.  The  permissions 
add  a  delegation  control,  in  that 
an  administrator  or  group  of 
administrators  can  be  assigned  a 
role  that  dictates  how  they  can 
use  the  software.  A  database 
administrators  role  would  limit 
use  of  ECM  to  monitoring  con¬ 
figurations  on  databases  only  Or 
an  executive  could  limit  access 


Honeynet 

continued  from  page  33 

to  chat  on  IRC  [Internet  Relay 
Chat  software],”  says  Haile,  who 
spoke  about  the  two-year  experi¬ 
ence  of  The  Honeynet  Project  at 
the  recent  InfoSec  conference. 
“The  first  thing  they’ll  do  on  a 
hacked  box  is  set  up  IRC  and 
invite  their  buddies  over.”  Then 
they  set  up  an  encrypted  route 
back  to  another  compromised 
server  elsewhere  on  the  Internet. 

The  goal  of  the  Honeynet 
Project,  started  by  Sun  engineer 
Lance  Spitzer,  is  not  to  capture 
hackers,  but  to  observe  their 
actions  and  find  out  about  new 
tools  they  use. 

"A  lot  of  these  hackers  are  not 
gurus  who  know  everything 
about  computers,"  Haile  says. 
“They  have  very  good  tools.  And 


only  to  the  reports  generated  by 
ECM. 

Previously,  ECM  let  anyone 
using  the  software  access  every 
server  and  desktop  on  the  net¬ 
work. 

“Now  I  have  much  more  flexi¬ 
bility,  and  1  can  decide  what 
administrators  can  see  and  do 
based  on  the  groups  they  belong 
to,”  says  Tony  DeVoto,  Windows 
NT  systems  administrator  for 
Volvo  Finance  North  America, 
the  lending  division  for  the 
automaker.  Volvo  Finance  has 
separate  IT  groups  for  develop¬ 
ment,  quality  control  and  pro¬ 
duction.  With  4.0,  DeVoto  con¬ 
fines  those  groups  to  the 
machines  that  they  control.“Now 
we  can  put  more  people  to  work 
with  this  tool,"  he  says. 

Configuresoft  is  adding  a 


they  talk  about  doing  this  for 
money. There’s  definitely  a  market 
for  hired  hacking  out  there.” 

The  Honeynet  Project’s  undis¬ 
closed  number  of  servers  and 
desktops,  maintained  at  diverse 
locations  with  a  minimum  of 
publicity,  spans  the  country.  Each 
server  typically  gets  20  or  more 
unique  scans  per  day  and  the 
hackers  don’t  have  too  hard  a 
time  breaking  inter  any  operating 
system  that  isn’t  up  to  date  on  its 
patches,  although  they  may  find 
new  vulnerabilities,  too. 

As  a  scientific  effort,  one  of  the 
Honeynet  Project’s  goals  is  to  ana¬ 
lyze  the  collected  data  to  develop 
software  that  can  detect  the  prob¬ 
ability  of  a  successful  attack.  The 
Honeynet  Project  also  would  like 
to  be  able  to  pinpoint  those  who 
make  these  hacker  tools. 

Even  as  it  learned  a  lot  about 


change  management  feature 
that  allows  for  single-click 
changes  to  system  and  security 
configurations.  Also  new  are  a 
full-featured,  Web-based  inter¬ 
face,  built-in  support  for  Crystal 
Reports,  and  a  compliance  mod¬ 
ule  that  monitors  and  maintains 
standard  configurations  on 
servers  and  desktops. 

ECM  works  by  placing  a  Dis¬ 
tributed  Component  Object 
Model-based  agent  on  each 
machine  in  the  network  that  in 
turn  sends  information  to  a  cen¬ 
tralized  database.  With  the  con¬ 
figuration  data,  administrators 
can  track  things  such  as  security 
settings. 

With  Version  4.0,  administrators 
can  not  only  track  configuration 
settings,  but  also  can  change 
them  on  a  single  machine  or 


hackers,  the  Honeynet  Project 
discovered  there  are  practical 
obstacles  in  operating  a  honey¬ 
net,  especially  in  making  sure  a 
hacker  doesn’t  use  the  honeypot 
as  a  springboard  to  break  into 
other  systems. 

“Suppose  hackers  break  into  a 
honeynet  during  the  weekend 
and  they  take  down  the  White 
House?”  Haile  says.  “There’s  a 
tremendous  legal  liability  in  all 
this.”  If  an  attacker  makes  more 
than  five  or  six  outbound 
attempts  at  attacks,  the  honeynet 
shuts  him  off.  Hailer  says  no  com¬ 
pany  should  set  up  a  honeynet  of 
its  own  before  discussing  it  with 
its  legal  department. 

The  Honeynet  Project  has 
designed  a  second-generation 
honeynet  that  will  include  an 
extensive  “production-looking” 
intranet  to  keep  hackers 


group  of  machines  with  a  mouse 
click.  Users  can  change  event  log 
settings;  create,  modify  or  delete 
Windows  Registry  keys;  and 
change  passwords  or  modify 
user  rights. 

Configuresoft  also  has  replaced 
its  read-only  Web-based  client 
with  a  full-function  Web-based 
interface  and  added  a  compli¬ 
ance  module  that  lets  companies 
ensure  that  all  machines  comply 
with  set  configurations. 

ECM  competes  with  BindView, 
Ecora  and  Aelita. 

Enterprise  Configuration  Man¬ 
ager  4.0,  which  runs  on 
Windows  NT/200,  is  expected  to 
ship  next  month.  Pricing  starts 
at  $1,000  per  server  and  $30  per 
desktop. 

Configuresoft:  www.configure 
soft.com 


intrigued  with  trying  to  break  in 
further.  But  it  will  block  out¬ 
bound  scanning. 

Hackers  tend  to  be  an  angry 
lot,  particularly  when  they  figure 
out  they  are  being  watched  in  a 
honeynet,  Haile  says.  “Hackers 
will  undertake  every  effort  to 
destroy  a  honeypot  when  they 
find  it.”  ■ 


More  online! 

Check  out  a  honeypot  in  action. 

DocFinder.  9036 


Marimba 
ups  its  desk¬ 
top  mgmt. 
suite 

■  BY  DENISE  DUBIE 

MOUNTAIN  VIEW,  CALIF  — 
Marimba  last  week  pumped  up 
its  desktop  and  mobile  manage¬ 
ment  software  suite  to  help  users 
more  easily  schedule  upgrades 
to  remote  machines  and  gener¬ 
ate  near  real-time  reports. 

In  addition  to  giving  users  more 
flexibility  in  scheduling  up¬ 
grades,  Marimba  added  ad¬ 
vanced  Web-based  reporting  to 
its  product  suite.  About  a  year 
ago,  Marimba  added  Web  man¬ 
agement  capabilities  to  its  prod¬ 
uct  portfolio,  and  the  company 
now  is  now  letting  users  take 
advantage  of  a  Web  interface  to 
generate  reports. 

Also  new  in  this  release  is  a 
browser-based  management  por¬ 
tal  that  the  company  says  makes 
it  easier  for  systems  administra¬ 
tors  to  install, configure  and  man¬ 
age  software  distribution.  Ma¬ 
rimba  enhanced  its  Java-based 
tools  with  Java  2  Platform 
Enterprise  Edition  technologies, 
including  JavaServer  Pages  and 
XML. 

The  company  says  the  Java 
technology  will  help  Marimba 
software  integrate  with  current 
and  future  third-party  products, 
such  as  Web  services  manage¬ 
ment  tools. 

Available  immediately,  pricing 
for  Marimba’s  Change  Manage¬ 
ment  product  families  begins  at 
$30,000  and  .varies  based  on 
number  of  endpoints  and  net¬ 
work  configuration.  Customers 
with  existing  maintenance  agree¬ 
ments  will  receive  the  release  at 
no  additional  charge.  ■ 


U.S.  Navy 

continued  from  page  33 

Available  over  the  Internet,  the  techni¬ 
cal  manuals  are  organized  by  model  so 
that  once  a  technician  keys  in  the  appro¬ 
priate  vessel,  the  software,  through  XML- 
based  transactions,  links  related  infor¬ 
mation.  A  technician  can  view  a  dia¬ 
gram  and  dick  on  a  hyperlink  to  open  a 
nev  window  containing  specifications 
for  a  paiticular  part,  for  example.“It’s  not 
scrolling  Kone  says.  “Everything  opens 
in  separate  windows  so  we  can  see  more 
than  one  thing  at  a  time." 

Easy  nav  igation  streamlines  parts  identi¬ 


fication  and  reduces  ordering  errors, 
Kone  says.  Technicians  quickly  can  find 
the  data  they  need,  instead  of  sorting 
through  stacks  of  hefty  manuals.  As  for 
productivity  gains,  “you  can’t  put  a  num¬ 
ber  on  it,  but  it’s  the  difference  between 
night  and  day/  Kone  says. 

Making  life  easier 

The  process  makes  Kone’s  job  easier, 
too.  Before  Enigma,  making  a  change  to 
an  existing  manual  required  the  team  to 
not  only  provide  the  new  content  but 
also  match  the  fonts,  style  and  page  lay¬ 
out  of  the  original  book  —  it  was  not 
unusual  to  spend  a  day  formatting  one 


page,  Kone  says.  The  process  was  “cum¬ 
bersome  and  agonizing,”  he  says.  Now 
Enigma  polices  the  formatting  of  docu¬ 
ments,  which  are  laid  out  hierarchically 
according  to  Navy  guidelines,  and 
makes  sure  writers  and  editors  adhere 
to  proper  document  structures.  “Lights 
out  editing,”  Kone  calls  it. 

Distribution  is  improved,  too.  Before 
Enigma,  Kone  had  to  allow  two  months 
from  the  time  a  book  was  finished  to  get 
it  in  the  technicians’  hands.  Now  his 
team  can  put  materials  on  a  Web  server 
as  soon  as  they  are  approved.  Recall 
notices  that  used  to  take  up  to  six  weeks 
to  reach  every  technician  in  the  fleet 


now  are  published  to  the  Web  in  two  or 
three  days. 

“We’ve  probably  picked  up  a  month- 
and-a-half  on  our  distribution  cycle," 
Kone  says.  Kone  is  saving  the  $2,000  it 
costs  to  print  each  manual. 

Down  the  road,  Kone  plans  to  link  the 
digital  manuals  to  a  procurement  sys¬ 
tem,  so  that  after  identifying  the  proper 
part,  technicians  can  check  pricing  and 
availability,  and  order  parts  from  within 
the  same  environment.  “We  want  to  be 
able  to  link  everything  the  books  are 
used  for  into  a  single  program,"  Kone 
says. 

Enigma:  www.enigma.com 
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How  can  you  connect  old 
systems  to  new?  Internal 
to  external?  Us  to  them? 

What  Is  .NET  connected 
software?  Get  the  answers 
before  the  questions  start. 

microsoft.com/enterprise 
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Instant  messaging:  The  problems 


Instant  messaging  is  coming  on  like 
gangbusters  in  enterprise  networks, 
and  with  its  success  come  some  of  the 
burdens  of  that  success.  Burdens  that 
include  deciding  whether  to  monitor  or 
archive  messages  and  the  disruption  of 


organizational  boundaries. 

The  No.  2  link  under  “other  top  news"  on 
the  CNN.com  Web  site  last  week  was  a 
story  titled  “Interest  in  IM  monitoring  on 
the  rise.”  The  story’s  subtitle  was  “Instant 
messages  aren’t  always  fleeting.” 
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...from  your  browser,  desktop  or  applications. 


Introducing  the  Xythos  WebFile  Server  3.2 
Internet-enabled  file  management  for  the  enterprise 

•  Superior  Sharing  -  the  right  file  goes  to  the  right  people,  without  the  hassles  of  email  attachments 

•  Standards  Based  -  the  ultimate  WebDAV  file  server 
•  Safe  and  Secure  -  supports  existing  security  and  authentication  protocols 
•  Easy  Implementation  -  works  with  existing  network  and  storage  standards 

•  Lower  Costs  -  reduce  your  storage  management  costs  as  you  increase  productivity 

•  Free  IDC/Xythos  Whitepaper  -  discover  the  best  internet-enabled  file  management  software 

’  for  your  company 


Call  1  888  4XYTHOS  (1  888  499  8467)  or  visit  www.xythos.com/webfile74 


Xythos 


Ultimate  File  Access,  anytime,  anywhere... 
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of  success 

The  story  was  mostly  about  companies 
starting  to  realize  that  they  need  to  start 
treating  instant  messages  like  e-mail  when 
it  comes  to  corporate  policy  If  the  corpo¬ 
ration  archives  all  e-mail  to  and  from 
employees,  maybe  they  should  do  the 
same  with  instant  messages,  which  are 
starting  to  replace  e-mail  and  phone  calls 
in  a  number  of  organizations. 

Note  that  an  organization  may  well  want 
to  think  quite  hard  about  archiving  all 
instant  messages,  just  like  they  should 
have  thought  about  archiving  all  e-mail 
messages.  Ask  Bill  Gates  how  much  fun  it 
was  to  be  asked  during  his  depositions 
about  email  he  had  sent  in  a  fit  of  peak 
years  before.  If  you  do  not  archive  the 
email,  then  you  cannot  be  forced  to  pro¬ 
duce  it  if  you  manage  to  get  embroiled  in 
a  lawsuit  some  time  in  the  future. 

I’m  not  a  real  fan  of  the  archiving  of 
employee  communications.lt  seems  to  be 
just  another  dehumanizing  step  along  the 
path  toward  corporate  ownership  of 
employees  and  a  potential  gold  mine  for 
opposing  attorneys.  But  I  do  understand 
that  some  employees  are  not  ideal  corpo¬ 
rate  or  real-world  citizens,  and  at  least 
some  monitoring  too  often  is  warranted, 
but  I’d  personally  rather  that  one  of  the 
key-word  scanning  tools  be  used  than  that 
all  e-mail,  and  instant  messages.be  saved 
forever.  These  tools  can  scan  for  things 
such  as  “guaranteed  profit"  in  e-mail  sent 
by  brokers  to  their  clients  and  archive 
(and  block)  those  letters. 

Instant  messaging  is  continuing  the  flat¬ 
tening  of  organizational  structures  that 
e-mail  started.  It’s  just  too  easy  to  send  an 
instant  message  to  anyone  bypassing  “nor¬ 
mal”  hierarchies. 

Another  story  on  CNN.com  a  few  days 
ago  explored  the  use  of  instant  messaging 
in  the  U.S.  Navy,  where  sailors  are  sending 
messages  between  themselves,  even  when 
they  are  in  different  ships,  and  sometimes 
navies. The  navies  of  the  U.S.,  Canada,  the 
U.K.,  Australia  and  Germany  all  use  the 
same  instant  messaging  software. 

The  writer  seemed  to.think  that  cutting 
through  the  chain  of  command  was  a 
good  thing, but  I’m  a  bit  worried  about  the 
security  implications  of  a  supply  clerk 
telling  someone  he  thinks  is  a  supply 
clerk  in  another  ship  that  they  are  stock¬ 
ing  up  on  MREs. 

The  use  of  instant  messaging  in  business 
is  yet  another  case  where  real  change  has 
happened  without  the  involvement  of 
corporate  planners  because  of  the  ease  of 
innovation  over  the  Internet.  People  just 
started  using  it,  and  the  planners  are  only 
starting  to  catch  up.  This  is  not  the  last 
time  this  will  happen.  (In  case  it’s  not 
clear,  innovation  is  a  good  thing.) 

Disclaimer:  Because  “instant”  and  “Har¬ 
vard”  are  not  related  concepts  the  above  is 
my  own  ramble. 

Bradner  is  a  consultant  with  Harvard 
University's  University  Information  Sys¬ 
tems.  He  can  be  reached  at  sob@ 
sobco.com. 
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intuitive  information  security 


Intuition  is  the  application  of  knowledge  based  on  experiences,  patterns  and  trends. 
Technology  alone  has  no  intuition.  It's  incapable  of  anticipating  or  adapting.  Don't 
mistake  technology  for  security.  At  best  it's  a  mechanical  solution  to  an  organic  problem. 
Intuition  is  the  human  trait  that  separates  us  from  machines,  and  it's  intuition  that 
allows  us  to  dynamically  create  strategies  rather  than  mere  solutions. 

Solutions,  by  their  very  nature,  are  passive.  They're  nothing  more  than  resolutions 
to  situations  that  have  come  and  gone.  Unfortunately,  solutions  on  top  of  solutions 
on  top  of  solutions  have  replaced  intelligence  as  a  way  to  protect  information. 
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information  is  naked. 

Intuition  leads  to  innovation.  Not  simply  to  solutions,  but  innovative  technologies  able  to  deliver  and 
execute  intelligent  strategies.  Technology  itself  must  constantly  be  questioned,  analyzed  and  expanded 
in  directions  that  are  yet  to  exist.  Using  intuition  to  anticipate  the  future  is  the  only  way  to  secure 
information  in  the  present. 

Identifying  new  viruses,  finding  malicious  code  and  logging  security  breaches  are  no  longer  enough. 
Intuitive  Information  Security  is  the  melding  of  innovative  technology  and  human  intuition  so  that  unique 
strategies  can  be  applied  to  ever-changing  problems.  Strategies  that  are  deployed  by  tools  able  to  under¬ 
stand  where  information  is  vulnerable  and  how  best  to  protect  it.  From  the  desktop  to  the  file  server. 
From  the  email  server  to  the  Internet  gateway.  From  the  home  PC  to  wireless  devices  —  everywhere 
there  is  information. 

•  Some  may  not  believe  that  this  is  possible.  But  to  those  who  do,  a  new  level  of  information  security  will 
emerge.  One  that  is  proactive  rather  than  reactive.  One  that  uses  intuition  and  technology  to  do  what  was 
!  once  done  manually.  And  most  important,  one  that  allows  the  emphasis  to  change  from  packaged 
solutions  to  evolving,  intelligent  strategies. 

]  Intuitive  Information  Security  is  as  much  a  philosophy  as  it  is  a  technology.  Without  intuition,  information 
is  naked.  To  accept  this  simple  principle  is  to  embrace  the  philosophy  of  go-red.  And  it  is  the  basis  of 
I  all  of  our  products  and  services. 

INTUITIVE  INFORMATION  SECURITY  IS  HERE. 
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Special  Focus 

LDAP:  Improving  access  to  enterprise  applications. 


Directory  standard  at  a  crossroads 


■  BY  JOHN  FONTANA 

In  the  spring  of  1997,  then  University  of  Michigan  stu¬ 
dent  Tim  Howes  walked  into  a  roomful  of  software  ven¬ 
dors  gathered  on  campus  and  detailed  a  standard 
directory  access  protocol  he  had  helped  develop  as  part 
of  his  master’s  degree  work. 

By  that  fall,  the  protocol  had  broken  out  of  academia, 
and  every  directory  vendor  had  committed  to  adopting 
Lightweight  Directory  Access  Protocol  (LDAP),  a  standard 
for  querying  and  updating  a  directory  and  an  answer  to 
the  failures  of  X.500’s  overweight  Directory  Access 
Protocol. 

Today,  LDAP  Version  3  (LDAPv3)  is  the  foundation 
for  a  centralized  enterprise  directory  available  to  any 
application. 

Every  directory  vendor  supports  LDAP  and  there  are 
thousands  of  LDAP-compliant  products  that  act  as  clients 
to  those  directories.The  protocol  has  become  the  standard 
used  throughout  large  companies  to  access  directory 
information  about  users  and  resources. 

“That  meeting  was  definitely  a  watershed,”  says  Howes, 
now  CTO  for  managed  service  provider  Loudcloud, speak¬ 
ing  about  the  meeting  in  1997. “Directories  couldn’t  work 
without  our  client.  The  market  was  screaming  for  a  stan¬ 
dard  client  protocol.” 

But  LDAP  is  clearly  at  a  crossroads.  Developers  of  the 
technology  have  answered  the  need  for  a  standard  way 
that  clients  can  access  a  directory,  and  LDAP  has 
cemented  itself  in  corporate  networks. 

“LDAP  has  provided  a  lowest  common  denominator  and 
the  simplest  way  for  us  to  get  to  the  directory?’  says  John 
Prince,  core  technology  manager  for  connectivity  at 
Conoco.  The  company  relies  on  the  protocol  to  make  its 
directory  available  to  other  applications. 

But  Prince,  like  others,  has  been  waiting  for  LDAP  to  stan¬ 
dardize  directory  integration. 

What  LDAPv3  lacks  is  widely  adopted  access  control  and 
back-end  integration  extensions, such  as  replication, which 
are  needed  to  integrate  disparate  directories  and  build  a 
distributed  directory  service.  Today  metadirectories  solve 
that  issue  within  a  company  but  the  problems  have  mostly 
trapped  LDAP  behind  the  firewall.  Experts  say  it  will  take 
help  from  emerging  technologies  such  as  XML  to  solve  it. 

Back  to  the  drawing  board 

The  Internet  Engineering  Task  Force  (IETF),  the  stan- 
dards-body  caretaker  of  LDAP  is  working  on  resolving  the 
protocol’s  lingering  issues. 

The  IETF  last  month  appointed  an  executive  committee 
to  review  a  backlog  of  65  submissions  for  LDAP  exten¬ 
sions.  The  IETF  also  suspended  work  in  the  LDAP  exten¬ 
sions  working  group  and  moved  its  work  on  an  access  con¬ 
trol  model  to  the  group  working  on  LDUP  —  the  LDAP 
Duplication/Replication/Update  Protocol.  LDUP  is  de¬ 
signed  to  provide  a  standard  method  for  server-to-server 
and  server-to-client  replication.  Secure  access  control  is 
important  when  directories  talk  directly  to  one  another  to 
exchange  information. 

“Replication  and  access  control  are  the  two  big-ticket 
work  items  but  will  take  some  time  to  see  completion,” 
says  Kurt  Zeilenga, co-chair  of  the  LDAP  Revision  working 
group  that  is  polishing  the  LDAPv3  specification  to 
address  ambiguities.“But  LDAP  is  alive  and  well. There  is 


LDAP  and  beyond 

Lightweight  Directory  Access  Protocol  is  no 
doubt  the  most  important  advancement  in 
creating  standard  access  to  directories,  but 
other  work  still  needs  to  be  done.  Here  is  a  list 
of  some  current  activity  related  to  LDAP  and 
directories. 

Internet  Engineering  Task  Force: 

LDAPv3  revision  (LDAPbis)  —  A  working  group  will 
deliver  revised  LDAPv3  "core”  specifications  (RFCs 
2251-2256  and  2829-2831)  suitable  for  consideration  as 
a  draft  standard. 

LDAP  Duplication/Replication/Update  Protocol 

(LDUP)  —  Chartered  to  standardize  master-slave  and 
multimaster  LDAPv3  replication.  Recently  inherited 
access  control  model  work  from  the  LDAP  extensions 
working  group. 

Organization  for  the  Advancement  of  Structured 
Information  Standards: 

Directory  Services  Markup  Language  (DSML)  — 
Version  2.0,  set  for  approval  this  summer,  is  basically  an 
XML  representation  of  LDAP  with  batch  request  and 
delete  operation  added. 

Security  Assertion  Markup  Language  (SAML)  — 
An  XML-based  security  standard  for  exchanging 
authentication  and  authorization  information  across 
security  domains.  Could  eliminate  need  for  standard 
directory  replication  and  synchronization.  Other  work: 
W3C,  XML  Signature,  IETF,  BEEP. 

Extensible  Access  Control  Markup  Language 

(XACML)  —  An  XML  specification  forexpressing  policies 
for  information  access  over  the  Internet.  Could  provide 
standardized  access  controls.  Other  work:  W3C,  XML 
Key  Management  Specification. 

The  Open  Group: 

Directory  Interoperability  Forum  (DIF)  —  A  virtual 
global  forum  promoting  open  and  interoperable  directories 
and  their  adoption  by  industry.  Also  provides  testing  and 
certification  for  applications  and  servers. 


untapped  potential  around  LDAP  and  we  are  moving  into 
some  interesting  areas.” 

He  says  ongoing  work  in  the  IETF  on  authentication  and 
security  protocols,  including  the  Simple  Authentication 
and  Security  Layer  and  Start  Transport  Layer  Security,  will 
benefit  LDAP 

But  some  observers  say  LDAP  has  stagnated,  as  evi¬ 
denced  by  the  fact  that  the  LDUP  group  has  not  produced 
a  standard  during  the  past  three  years  and  that  XML  may 
be  what  provides  the  pieces  LDAP  has  not. 

“It  is  obvious  that  XML  has  become  the  way  to  exchange 
data  in  the  future,  and  it’s  obvious  that  LDAP  may  have  to 
take  a  back  seat  or  go  away  at  some  point,”  says  Dave 
Kearns,  an  independent  consultant  and  Network  World 
columnist. 

LDAP  now  shares  the  stage  with  Directory  Services 
Markup  Language  (DSML),  an  XML  clone  of  LDAPv3. 
Directory  vendor  iPlanet  already  has  its  XMLDAP  Gateway, 


which  allows  developers  to  build  applications  that  use 
DMSL  to  perform  LDAP  operations. 

Furthermore,  emerging  XML  standards, such  as  Security 
Assertion  Markup  Language  (SAML)  and  Extensible 
Access  Control  Markup  Language,  may  supply  access 
management  features  to  complement  LDAP  and  DSML, 
and  eliminate  the  need  for  directories  to  replicate  data  to 
each  other  before  they  can  interact. 

“LDAP  is  not  dead,  but  it  has  hit  a  plateau  and  will  stay 
there  a  long  time,”  says  Daniel  Blum,  an  analyst  with  The 
Burton  Group  and  another  Network  World  columnist. “We 
don’t  think  the  access  control  work  will  gain  a  lot  of 
adopters  because  there  are  too  many  vendors  with  their 
own  mechanisms.” 

XML  may  hold  some  of  the  answers. 

DSML  2.0  provides  a  natural  affinity  with  other  XML  work. 

“We’re  excited  about  DSML.  It  puts  LDAP  in  a  protocol 
and  coding  [XML]  that  is  everywhere,”  says  Winston 
Bumpus,  cochair  of  the  DSML  working  group  and  chair¬ 
man  of  the  Directory  Interoperability  Forum  “Small  mobile 
devices  won’t  need  LDAP:  They  can  use  XML  and  Simple 
Object  Access  Protocol  to  communicate.” 

Others  say  that  XML  will  fill  other  LDAP  gaps. 

“I  think  you  will  see  more  XML-based  integration  tech¬ 
niques  adopted  than  LDAP  extensions,"  says  Patrick 
O’Kane,  chief  architect  of  ePresence,  a  systems  integrator 
focused  on  directories.  He  says  XML  on  the  whole  is  being 
touted  as  the  technology  to  integrate  backend  systems, 
including  the  directory 

XML  protocols,  many  not  directly  related  to  directory 
operation,  may  function  a  layer  above  the  directory,  to  link 
access  management  servers,  for  example.  In  that  case, 
those  servers  use  XML  to  exchange  preapproved  authenti¬ 
cation  and  authorization  data  pulled  from  the  directories 
they  are  connected  with  using  LDAPThe  LDAP-compliant 
directories  never  talk  to  one  another  and  don’t  require 
compatible  access  controls,  replication  or  schema,  which 
describe  the  directory  structure. 

It’s  less  about  integrating  at  the  directory  layer  and  more 
about  integrating  software  that  relies  on  a  directory 

Emerging  XML  protocols  such  as  SAML  help  foster  that 
software  integration,  experts  say 

“SAML  can  assert  that  authentication  of  a  user  has 
occurred  and  insert  privileges.  It  assumes  the  receiver  can 
consume  SAML  without  having  to  know  schema  or  proto¬ 
cols  used  by  the  sender’s  directory,”  says  Jamie  Lewis,  pres¬ 
ident  of  The  Burton  Group. 

LDAP  requires  that  knowledge. 

But  he  warns  that  SAML  has  schema  and  syntax  issues  of 
its  own  and  that  identity  management  systems  such  as 
Microsoft  Passport  or  Sun’s  Liberty  Alliance  also  have  to  be 
part  of  the  mix. 

“But  SAML  is  a  more  loosely  coupled  environment.  It 
won’t  be  dressing  up  LDUP  in  XML,”  Lewis  says. 

Another  important  factor  may  be  XMLs  path  to  th<j 
Internet.  Companies  typically  open  Fbrt  80  to  let  data  flow 
to  the  Internet.  XML  data  passes  through  Fbrt  80  on  th; 
back  of  HTTPLDAP  on  the  other  hand  uses  Fbrt  389,  a  port 
many  IT  executives  are  willing  to  open  on  their  firewalls. 

“The  attraction  to  XML  is  that  it  runs  over  Fbrt  80,” says 
Jackson  Shaw,  lead  product  manager  for  Microsoft* 
Active  Directory.  “Companies  that  have  that  port  op  -n 
have  tools  to  do  content  inspection  on  that  port,  not  Pod 
389.”  ■ 
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Storage  in  every  size  and  width. 


The  difference  between  winning  and  losing  is  a 
little  thing  called  “storage”  And  the  winning  play 
is  integrated  storage  solutions.  Why?  Hardware 
and  software  that  fit  and  work  together  speed 
implementation.  They  allow  you  to  maximize  your 
current  infrastructure  investments  and  help  reduce 
risk.  IBM  TotalStorage™  solutions  are  complete, 
cross-platform  storage  offerings  that  cover  storage 
networking,  disk,  tape,  software  and  services.  For 
example,  IBM  NAS  gives  you  amazingly  scalable 
data  storage  that  fits  into  just  about  any  LAN -fast. 
IBM  FAStT  offers  some  of  the  highest  performance, 
most  affordable  midrange  disk  storage  available 
today.  Are  you  bent  on  winning?  You  can  test-drive 
any  IBM  storage  solution  at  one  of  over  140  IBM 
TotalStorage  Solution  Centers.  Find  out  where,  at 
ibm.com/totalstorage/solutions 
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INTRODUCING  THE  BLACKBERRY  5  8 1  0  T.M  NOW  YOU’RE  TALKING  BUSINESS. 

BlackBerry™  is  already  the  corporate  standard  for  secure  wireless  email. 
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XO  launches  cheaper  Ethernet  options 

‘Unprotected’  services  are  targeted  at  cost-conscious  businesses. 


■  BY  MICHAEL  MARTIN 

XO  Communications  this  week  will  intro¬ 
duce  what  it  calls  “unprotected”  Ethernet 
services  designed  for  business  customers 
who  want  metropolitan  or  intercity  Ether¬ 
net  but  don’t  need  the  highest  level  of  reli¬ 
ability  and  its  associated  cost. 

The  financially  troubled  competitive  car¬ 
rier  also  will  unveil  Fibre  Channel  and 
Enterprise  Systems  Connection  (ESCON) 
transport  options  for  metropolitan-area 


■  Tachyon  recently  introduced  its 
Mobile  Network  Access  satellite  ser¬ 
vice,  which  offers  portable  broadband 
access.  The  service  is  designed  for 
users  that  need  high-speed  Internet 
access  for  special  events,  construc¬ 
tion  sites  or  other  temporary  loca¬ 
tions.  The  service  includes  a  Tachyon 
network  router,  a  1.2-meter-diameter 
satellite  dish,  a  radio,  shipping  cases 
and  cabling.  The  Mobile  Network 
Access  service  is  available  in  the  U.S. 
and  costs  $600  to  $2,000  per  month 
foraT-1, 1.544M  bit/sec,  wireless  con¬ 
nection.  www.tachyon.net 

■  Capital  spending  by  North  Amer¬ 
ican  telecom  carriers  probably  will  not 
recover  until  2004,  research  company 
RHK  says.  And  even  after  the  recov¬ 
ery,  carriers  as  a  group,  including  in¬ 
cumbent  and  competitive  telecom 
service  providers,  likely  will  not  return 
to  2001  spending  levels  until  about  four 
years  from  now.  The  most  likely  sce¬ 
nario  shows  capital  expenditure  stay¬ 
ing  roughly  flat  through  2003  before  it 
begins  to  recover  in  2004.  Service  pro¬ 
viders'  capital  expenditure  will  drop  to 
around  $46  billion  to  $51  billion  in  2002, 
from  $77  billion  in  2001,  RHK  says.  It 
projects  spending  also  to  stay  roughly 
flat  through  next  year,  from  $44  billion 
to  $57  billion  for  2003.  A  recovery 
probably  will  begin  slowly  in  2004,  with 
spending  from  $46  billion  to  $63  bil¬ 
lion,  and  continue  in  2005  and  2006. 


networks  (MAN). 

XO  already  offers  a  suite  of  Ethernet  and 
wavelength  services  for  large  business  cus¬ 
tomers  (see  chart). 

But  not  all  customers  require  the 
99.999%  availability  guarantees  that  come 
with  XO’s  existing  offerings,  says  Garrett 
Hess,  XO’s  senior  product  manager  for 
Ethernet  services. 

XO’s  unprotected  Ethernet  services,  avail¬ 
able  at  100M  bit/sec  and  1G  bit/sec,  give 
customers  less  redundancy  but  still  in¬ 
clude  a  99.99%  availability  service-level 
agreement.  By  losing  a  nine  from  their  reli¬ 
ability, customers  will  save  from  30%  to  50% 
off  the  cost  of  a  comparable  higher-grade 
service,  Hess  says. 

“You  still  get  guaranteed  port-to-port 
bandwidth,”  he  says.  “You  still  get  an 
Ethernet  handoff.  And  there’s  still  no  cus¬ 
tomer-premise  equipment  cost,  and  XO 
manages  the  service  from  end  to  end.” 

Ron  Kaplan,  an  analyst  with  1DC,  says 
unprotected  Ethernet  services  will  appeal 
to  cost-conscious  companies  and  to  busi¬ 
nesses  looking  for  a  back-up  service. 

However,  the  overall  market  for  Ethernet 
services  in  the  U.S.  isn’t  huge.  In  2001,  IDC 
estimated  the  market  at  $151  million  and 
predicted  it  would  grow  36%  per  year  for 
the  next  five  years. 

XO  is  hoping  to  tap  into  the  demand  for 
storage  services  by  offering  Fibre  Channel 
and  ESCON  traffic  options  over  Ethernet. 
Fibre  Channel  and  ESCON  support  will  be 
limited  to  protected  Ethernet  services  and 
will  only  operate  within  MANs. 

Winning  customers  with  new  services 
might  be  the  least  of  XO’s  concerns  though. 

The  company  is  struggling  under  a  debt 
burden  of  more  than  $5  billion  and  has 
been  rumored  to  be  on  the  verge  of  bank¬ 
ruptcy  for  months. 

In  January  XO  reached  an  agreement 
with  billionaire  Ted  Forstmann,  who 
already  holds  a  22%  stake  in  the  company 
and  partner  Telefonos  de  Mexico,  that 
would  see  the  two  each  invest  $400  mil¬ 
lion.  In  return,  each  would  get  a  39%  stake 
in  the  company  and  XO’s  debt  holders 
would  restructure  the  debt. 

In  March,  the  company  was  rumored  to 
be  on  the  verge  of  filing  for  Chapter  11 
bankrupcty,  with  the  intent  of  re-emerging 
as  a  restructured  firm  under  Forstmann 
and  Telefonos  de  Mexico.  However,  a  group 
of  investors,  led  by  billionaire  Carl  Icahn, 
was  fighting  the  restructuring,  arguing  that 


investors  were  not  getting  a  good  deal. 

Last  week  XO  issued  a  statement  saying  it 
is  still  working  on  restructuring  its  debt  and 
negotiating  with  the  Icahn-led  group. 

“I  think  the  financial  situation  is  a  con¬ 
cern,”  Kaplan  says.  “People  are  wary  of 
[competitive  local  exchange  carriers]  in 
general,  and  XO’s  specific  problems  won’t 
help  them  either’’ 

However,  Kaplan  adds,  many  companies 
who  rely  on  CLEC  services  are  large  com¬ 
panies  that  buy  services  from  more  estab¬ 
lished  telecom  players  as  well.  The  CLEC 
offerings  give  these  companies  network 
redundancy  and  aren’t  a  real  risk,  because 
if  the  CLEC  runs  into  trouble,  the  large  cus¬ 
tomers  can  rely  on  circuits  from  their  other 
providers. 

XO:  www.xo.com 


■  BY  DENISE  PAPPALARDO 

Teleglobe  Communications  is  simplifying 
its  managed  data  services  by  offering  a  sin¬ 
gle  device  that  it  claims  is  easy  to  upgrade 
as  well  as  cost-effective. 

This  week  the  multinational  carrier  and 
Quick  Eagle  Networks  are  expected  to  an¬ 
nounce  that  Teleglobe  is  rolling  out  the 
vendor’s  4200  Intelligent  WAN  Access 
device  to  its  managed  private  line,  ATM 
and  some  dedicated  IP  VPN  customers. 

“We  liked  these  products  because  of  their 
remote  monitoring  and  reconfiguration  ca¬ 
pabilities, ’’says  Greg  Ewert,vice  president  of 
marketing  at  Teleglobe.  “We  can  upgrade 
the  devices  without  calling  out  a  techni¬ 
cian  to  the  premise  to  reconfigure  the  box.” 

Previously  Teleglobe  was  using  devices 
from  several  vendors  to  support  its  man¬ 
aged  data-service  offerings,  Ewert  says.The 
carrier  plans  to  use  the  Quick  Eagle  device 
for  nearly  all  its  managed  data  services. 

Using  a  single  vendor’s  product  to  sup¬ 
port  all  its  managed  data-service  cus¬ 
tomers  also  will  make  it  easier  for  Tele¬ 
globe  to  launch  new  and  enhanced  ser¬ 
vices, says  Liza  Henderson, a  vice  president 
at  consulting  firm  TeleChoice.  Because  this 
device  can  be  upgraded  remotely,  Tele¬ 


Big  bandwidth  options  3 

XO’s  existing  Ethernet  and 
wavelength  services  include: 

Ethernet 

• 

10M,  100M  and  1,000M  bit/sec 
connections. 

• 

A  fully  managed  service,  including 
customer  premises  equipment. 

•  j 

An  SLA  of  99.999%  on  availability 
and  network  performance. 

Wavelength 

• 

Metropolitan  waves  up  to  OC-48. 

• 

Intercity  waves  up  to  OC-192. 

globe  could  easily  add  features  such  as 
bandwidth  management,  she  says. 

Teleglobe  also  will  deploy  the  Quick 
Eagle  device  for  customers  with  a  location 
connected  to  their  corporate  WAN  via 
another  provider’s  frame  relay  network. 
Teleglobe  does  not  offer  frame  relay  ser¬ 
vices  directly  but  does  offer  customers 
frame-to-ATM  interworking  for  cases  in 
which  a  customer  has  a  site  in  a  country 
where  Teleglobe  doesn’t  offer  service. 

“Many  large  enterprises  are  relying  on 
service  providers  to  help  reduce  operat¬ 
ing  expenses,”  Henderson  says.  “It’s  easier 
and  many  times  more  cost-effective  for 
users  to  buy  a  managed  service  from  a 
service  provider  than  it  is  to  hire,  retain 
and  train  a  staff.” 

For  this  reason,  Teleglobe’s  use  of  Quick 
Eagle’s  access  devices  will  be  especially 
attractive  to  businesses  that  have  a  large 
number  of  locations,  she  says.  ■ 

More  online! 

See  how  Teleglobe  is  using 
the  4200  access  devices 
to  simplify  management 
and  monitoring. 

DocFinden  9035 


Teleglobe  moves  to  unify 
managed  data  services 
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IP  VPNs:  When,  where  and  why 


Every  few  years  the  concept  of  IP 
VPNs  gets  a  lot  of  press.  The  idea  is 
simple:  A  company  can  use  one 
infrastructure  (an  IP  network)  to  connect 
branch  offices,  headquarters,  remote 
users,  and  third  parties  such  as  suppliers 


and  customers. 

Yet  most  large  organizations  continue  to 
use  a  patchwork  of  frame  relay,  ATM  and 
remote-access  services  to  handle  these 
needs. 

If  IP  VPNs  are  such  a  great  idea,  why 


CMP 

United  Business  Media 


or  for  more 
information  visit 

www . techxny . com 

source  code:  HKANW 

JACOB  K.  JAVITS 
CONVENTION  CENTER 
NEW  YORK  CITY,  NY 
CONFERENCES  &  EXHIBITS 
JUNE  25-27,  2002 

Sponsors : 

n _ ,  _  Financial _ , 

Entrepreneur  -^chnoiogiT 

‘•'Network 

C  avan  vnatem  hamk  - 

Forbes  ■^{Cristina' 

Foundation 

el|f  JTcUi  jlork  (Times 

Phocas  Partners 


VERITAS* 


WITb- 


Keynote  Sponsor: 

|  wMno.buaineMtweek.com 


DV 

expo 

■  cast 


CONFERENCES 

Integration  and  Infrastructure  •  Small  Business  Summit  • 
Business  Continuity  &  Security  •  Storage  &  High  Availability 
Summit*  Mobile  Connections  •  Women  in  Technology  •  Web 
Services,  Java  &  XML  Edge  Conferences  •  Best  of  Novell 
Brainshare  •  TechConnects  •  Doculabs  One-on-One  Consulting 
•Start-Up  World  NY*  Win  2000  Boot  Camp ‘Linux  Boot  Camp*  and 
more  to  come... 


EXPOS 

PC  EXPO  -  In  its  20th  year  and  still  NY's  leading  technology 
event  PC  EXPO  provides  business  solutions  including:  PCs  and 
PDAs  •  security  •  Internet  and  wireless  solutions  •  CRM  • 
infrastructure  •  storage  •  networking  •  the  latest  in  LINUX 
and  more... 

DV  EXPO  -  for  professionals  using  digital  video  technology 

Web  Services,  Java  &  XML  Edge  Events  -  for  web  services, 
Java  &  XML  developers 

TECHXNYCareerExpo  -  Your  New  York  resume  writing,  career 
counseling  and  job-hunting  headquarters,  presented  by  BrassRing 


SPECIAL  EVENTS 

Keynotes  •  Guided  Tours  •  Awards  •  more  to  come... 


educational  conferences,  special  events  and  exhibits, 
providing  you  with  the  tools  that  you  need  to  succeed  in 
business.  Register  today  to  be  a  part  of  New  York's 
Technology  Event! 


www.nwfusion.com 


haven’t  more  companies  taken  advantage 
of  them? 

Two  reasons:  the  state  of  the  technology 
and  the  maturity  of  most  enterprise  orga¬ 
nizations.  In  this  column  and  the  next,  I’ll 
explore  the  basic  concepts  of  IPVPNs.dis- 
cuss  where  and  when  they’re  effective, 
and  cover  the  anticipated  evolution  of  the 
services. 

There  are  three  basic  flavors  of  IP  VPNs, 
each  with  an  associated  set  of  business 
requirements  and  technology  enablers. 

Remote-access  VPNs:  These  let  individ¬ 
ual  users  such  as  road  warriors  and 
telecommuters  connect  to  a  corporate 
network.  In  most  large  corporations, 
remote-access  VPNs  are  based  on  a  com¬ 
bination  of  two  things:  carrier  services 
such  as  AT&T’s  Global  Network,  which  pro¬ 
vide  the  dial-up  connectivity,  and  security 
software  such  as  Nortel’s  Extranet  Access, 
which  provides  encryption. 

An  important  nuance:  The  two  don’t 
require  each  other,  but  using  them  in  tan¬ 
dem  expands  their  effectiveness.  Security 
software  enables  fixed-site  remote  access 
across  the  Internet  (for  example,  cable 
modems  and  DSL),  and  dial-up  services 
ensure  consistent  access  for  traveling 
users. 

Branch-office  VPNs:  This  type  connects 
branch  offices  to  headquarters.  Frame  ser¬ 
vices  and  ATM  typically  serve  the  market, 
primarily  for  reasons  of  cost  and  service 
quality.  Private  IP  networks  can  come 
close  to  the  quality  of  a  frame  or  ATM  net¬ 
work,  but  using  Internet  services  can 
make  service  quality  dicey. 

Extranet  VPNs:  These  let  companies  con¬ 
nect  with  partners  (suppliers,  customers, 
joint  ventures).  They  require  a  mix  of  IP 
services  and  layered  security  software. 

Why  does  this  matter?  Well,  especially 
in  this  economy,  companies  have  the 
funny  habit  of  deploying  technology 
only  if  it  helps  them  cut  costs,  improve 
performance  or  generate  new  revenue. 
Each  VPN  flavor  serves  a  different  pur¬ 
pose.  So  if  you’re  making  the  business 
case  for  IP  VPNs  to  your  CIO,  consider 
this: 

Remote-access  VPNs  save  money  (com¬ 
pared  with  direct-dial  solutions).  If  you’re 
still  using  direct-dial,  you’re  behind  the 
curve:  Roll  out  an  IP  VPN  today  Branch- 
office  VPNs  lower  costs  slightly  —  on  the 
order  of  10%  —  but  more  importantly,  may 
improve  the  performance  of  some  key 
applications  (see  next  week’s  column). 
Many  leading-edge  companies  are  begin¬ 
ning  to  explore  branch-office  IP  VPNs,  and 
yours  may  need  to  as  well.  Extranet  VPNs 
accelerate  revenue  generation  by  improv¬ 
ing  communication  with  suppliers  and 
business  partners.  Most  companies  are  still 
fleshing  out  the  business  processes  that 
will  make  this  happen  —  stay  tuned. 

Johnson  is  senior  vice  president  and  CTO 
at  Greenwich  Technology  Partners,  a  net¬ 
work  consulting  and  engineering  firm.  She 
can  be  reached  at  johna@greenwichtech 
com. 


peering,  DoS  defense  to  the  edge 


Avici  takes 

■  BY  JIM  DUFFY 

NORTH  BILLERICA,  MASS.  —  In  an  effort 
to  broaden  the  application  and  revenue 
opportunities  of  its  Internet  core  routers, 
Avici  Systems  last  week  unveiled  software 
designed  for  aggregating  lower-speed  links 
and  peering  between  service  providers’ 
networks. 

The  software,  IPriori  4.2,  now  includes 
features  specific  to  aggregation  and  peer¬ 
ing  functions  closer  to  the  network  edge, 
such  as  packet  accounting,  filtering  and 
quality-of-service  marking  capabilities. The 
software  is  intended  to  reduce  the  number 
of  devices  required  in  service  provider 
points  of  presence  for  edge  aggregation, 
which  will  let  users  better  defend  against 
denial-of-service  (DoS)  attacks,  Avici  says. 

Avici’s  forte  has  been  core  routing,  which 
operates  in  the  OC-48  to  OC-192  range. 
With  IPriori  4.2, Avici  is  looking  to  make  an 


Takes 


■  ONI  Systems  last  week  an¬ 
nounced  that  COLT  Telecom¬ 
munications,  KVH  Telecom  and 
Telseon  are  using  ONI's  Online  opti¬ 
cal  transport  system  to  sell  storage- 
area  network  services  to  their 
respective  corporate  customers  in 
Europe,  Japan  and  the  U.S.  ONI's 
storage  capabilities  include  support 
for  Fibre  Channel  and  Enterprise 
Systems  Connection  at  distances  of 
thousands  of  miles,  the  vendor  says. 
Deployments  to  date  have  been  for 
both  synchronous  and  asynchronous 
data  replication,  www.oni.com 

■  Alcatel  recently  announced  that  it 
has  completed  its  acquisition  of  next- 
generation  SONET  system  vendor 
Astral  Point-  Astral  Point's  offer¬ 
ings  will  let  Alcatel  address  metropol¬ 
itan-area  and  regional  SONET 
requirements,  Alcatel  says.  Astral 
Point’s  ON  5000  and  ON  7000  plat¬ 
forms  are  designed  to  support  cur¬ 
rent  SONET  services  while  enabling 
Ethernet  and  wavelength-based 
VPNs  on  the  same  network,  www 
.alcatel.com 


impact  in  the  lower-speed  arena  of  OC-3, 
OC-12  and  Gigabit  Ethernet. 

Avici  also  released  a  new  eight-port  Gig¬ 
abit  Ethernet  module  for  its  routers  that’s 
designed  to  take  advantage  of  the  new 
software.  This  module  —  along  with  an 
existing  16-port  OC-3  card  for  Avici’s 
routers  —  lets  the  vendor  offer  densities  of 
320  Gigabit  Ethernets  and  640  OC-3s  per 
7-foot  rack. 

But  densities  like  that  mean  nothing 
without  software.  IPriori  4.2  runs  on  Avici’s 
Terabit  Switch  Router  (TSR)  and  Stackable 
Switch  Router  (SSR)  platforms.  Key  fea¬ 
tures  include  NetFlow+,port  mirroring  and 
packet  filtering,  which  are  designed  to  let 
carriers  perform  diagnostic  traffic  analysis 
and  provide  protection  for  their  networks 
from  attacks. 

NetFlow+  is  a  packet  accounting  and 
billing  capability  that  ostensibly  is  compat¬ 
ible  with  Cisco’s  NetFlow  packet  account¬ 
ing  technique.  This  may  give  carriers  cur¬ 
rently  deploying  Cisco  routers  for  aggrega¬ 
tion  and  peering  incentive  to  consider 
Avici’s  TSR  and  SSR. 

“NetFlow  is  a  key  differentiator”  for  Avici, 
says  Chris  Nicoll,  an  analyst  with  Current 
Analysis.  “It  helps  [IPriori]  4.2  make  a 
strong  statement  to  say  ‘If  it’s  a  Cisco  net¬ 
work,  we  can  slip  in  there.’” 

Cisco  owns  about  80%  of  the  market  for 


1G  to  9G  bit/sec  routers  used  for  IP  aggre¬ 
gation  and  peering,  and  about  73%  of  the 
market  for  higher-class  systems,  according 
to  Dell’Oro  Group.  Nicoll  says  loosening 
Cisco’s  stranglehold  on  the  market  will  be 
Avici’s  biggest  challenge  with  IPriori  4.2. 

Meanwhile,  the  software’s  port-mirroring 
capability  copies  traffic  to  a  predefined 
port  for  inspection.  The  entire  packet  can 
be  viewed  with  an  analyzer  to  determine  if 
a  DoS  attack  is  under  way,  Avici  says. 

Packet  filtering  can  be  enabled  by  IPriori 
4.2’s  ability  to  establish  2,000  access  con¬ 


trol  lists  per  module,  which  equates  to 
80,000  ACLs  per  TSR  and  40,000  per  SSR. 
With  this  capability,  carriers  that  peer  their 
networks  can  filter  traffic  based  on 
source/destination  addresses,  TCP/User 
Datagram  Protocol  (UDP)  port  numbers, 
and  protocols  to  determine  whether  pack¬ 
ets  should  be  forwarded,  discarded  or  mir¬ 
rored  for  further  inspection. 

IPriori  4.2  and  the  eight-port  Gigabit 
Ethernet  card  are  available  now.  Pricing 
was  not  disclosed. 

Avici:  www.avici.com 


NextHop  scales  routing  software 

Company’s  latest  release  supports  millions  of  paths. 


■  BY  JIM  DUFFY 

MOUNTAIN  VIEW,  CALIF  —  Routing  software  supplier 
NextHop  Technologies  last  week  unveiled  a  new  version  of  its 
product  that  offers  greater  scalability  for  service  providers  and 
large  companies. 

Version  9.3  of  NextHop’s  GateD  routing  software  has  been 
enhanced  to  support  the  most  common  requirements  of  growing 
Internet  use, such  as  an  increasing  number  of  interfaces,  the  size  of 
the  routing  table  and  speed  of  convergence,  the  company  says. 

At  the  edge,  GateD  9.3  has  supported  more  than  64,000  interfaces 
in  NextHop’s  product  tests,  the  company  says.This  level  of  scalabil¬ 
ity  is  key  because  aggregation  boxes  need  to 
collect  a  massive  amount  of  PPP  connections 
and  addresses  without  causing  a  router  fail¬ 
ure,  NextHop  says. 

Inside  the  carrier  network,  software  sup¬ 
ports  hundreds  of  neighboring  routers  and 
greater  than  500,000  Open  Shortest  Path  First 
and  IS-IS  advertisements  to  and  from  these 
neighbors,  NextHop  says.  Between  carrier  net¬ 


works,  GateD  9.3  also  scales  to  handle  150  peers,  more  than  500,000 
unique  routes  and  millions  of  total  routes,  the  company  says. 

The  Internet  currently  supports  more  than  100,000  unique 
routes,  NextHop  says.  Support  for  millions  of  routes  is  becoming  a 
requirement,  the  company  says,  because  routers  at  peering  points 
not  only  have  to  carry  the  entire  Internet  routing  table,  they  also 
must  be  able  to  carry  a  complete  copy  per  peer. 

NextHop  also  announced  an  agreement  with  IBM  designed  to 
let  equipment  manufacturers  accelerate  the  development  of  net¬ 
work  equipment.  IBM  and  NextHop  have  ported  GateD  software 
to  IBM’s  Linux-based  NP4GS3  network  processor  for  use  in  net¬ 
work  equipment  manufacturers’  routers. 

GateD  9.3  is  shipping  now.  Pricing  ranges 
from  $75,000  to  $400,000. 

“Service  providers  have  a  trepidation  of 
going  with  third-party  router  products  so 
there’s  a  number  of  places  where  NextI  L 
can  sell  products,”  says  Mark  Bieberich.se 
ior  analyst  at  The  Yankee  Group.uBut  one  o. 
the  questions  I  have  is,  is  GateD  ready  for  ! 
these  applications?”* 


More  online! 

See  who's  getting  into  the 
fast-growing  route 
control  market. 

DocFinder:  9034 


New  release  of  IPriori  software  for  the  Terabit  Switch 
Router  and  Stackable  Switch  Router  aggregates  the 
following  features: 


Support  for  OC-3c,  OC-12c,  OC-48c,  OC-192c 
and  Gigabit  Ethernet  interfaces. 

2,000  access  control  lists  per  module. 

Packet  and  byte  counters. 

Rate  limiting. 

Enhanced  lookup  and  filtering. 

QoS  remarking. 

Packet  sampling. 


Good  Business  Strategy: 
Secure  Your  Information. 


Internet  access  has  changed  the  way  your  business  has  to  protect 
itself.  Gateway  has  the  technology  solutions  to  help  keep  your 
information  secure.  We  offer  security  audits,1  physical  access  solutions 
and  network  protection  options. 

A  Gateway  Network  Solution  Provider  can  come  on-site  to  assess  your  security  needs, 
provide  you  with  a  detailed  report  and  make  recommendations.  Along  with  anti-virus 
software,  tape  backup  products  and  surge  protectors  to  safeguard  your  data,  Gateway 
offers  a  full  range  of  robust  business  desktops,  versatile  notebooks  and  reliable  servers. 
All  are  powered  by  Intel®  processors,  including  the  latest  Intel  Pentium  4  processor. 

For  a  limited  time  only,  purchase  any  Gateway  910,  930  or  935  Series  server  and 
you’ll  receive  a  business  Security  Audit  at  no  additional  charge?  That’s  added  protection 
and  a  reliable  server  to  help  power  your  business. 

You  have  a  lot  invested  in  your  business,  thankfully  there’s  something  you  can  do  to 
protect  that  investment.  And  Gateway  makes  it  affordable.  Call  us  today. 

Gateway®  PCs  use  genuine  Windows®  Operating  Systems 
http://www.microsoft.com/piracv/howtotell 


888.203.4559 


Come  into  your 
local  Gateway®  store. 


gateway.com 


Gateway®  Security  Audit1 

Don’t  let  your  business  investment  go  unprotected.  The 
findings  from  the  Gateway  Security  Audit  will  be  the  first 
step  to  uncovering  potential  problems  of  your  company’s 
security,  and  can  aid  in  protecting  your  entire  technology 
environment.  Services  include: 

•  Identification  of  Current  Security  Problems 
and  Potential  Issues 

•  Detailed  Custom  Report  Specific  to  Your 
Technology  Environment 

•  Prioritized  List  of  Recommendations 

•  Genera]  Security  Advice 

T7D  7777;  with  the  purchase  of  airy  Gateway  Server. 

-T  ArT/  Offer  ends  June  JO,  2002. 


Gateway  E-3600  Desktop 

Highly  Managed  Mainstream  Performer 

•  Intel®  Pentium®  4  Processor  1 .60GHz 

•  15"  Flat  Panel  Display 


128MB  SDRAM 
20GB  Ultra  ATA  Hard  Drive 
32MB  Nvidia®  GeForce2“  MX200  AGP  Graphics 
20X  min/48X  max  CD-ROM  Drive 
3.5"  1.44MB  Diskette  Drive 
Microsoft®  Windows®  98 
3-Year  Parts  and  Labor  Warranty4 
with  3-Year  On-Site  Service4 


$1139’ 


$57  per  mo.  for 
24  mos.  business  lease 6 


Gateway  930  Series  Server 

High  Performance  Workgroup  Server 

•  Intel®  Pentium®  III  Processor  1.13GHz  with  512K  Cache 
(Upgradable  to  Dual-Processor  1.4GHz  with  512K  Cache) 

•  256MB  PC  133  ECC  SDRAM  (Expandable  to  4GB) 

•  18GB  Ultra  160  SCSI  SCA  10,000RPM  Hard  Drive 
(Upgradable  to  six  73  GB  Hot-Swap  Hard  Drives) 

•  20X  min/48X  max  IDE  CD-ROM  Drive 

•  350W  Power  Supply  (Upgradable  to  N+l  RPS) 

•  Integrated  Dual  Channel  Ultral60  SCSI 

•  Integrated  Intel  Gigabit  Ethernet 

•  3 -Year  Parts/Labor,  Next  Business  Day 
On-site  Limited  Warranty'4 

•  FCC  Class  A  Emission  Standard7 

$1099 

$55  per  mo.  for 
24  mos.  business  lease1. 


Gateway 


1  Tte  Gateway  SecudyAiiJt.;  intended  to 
be  a  mono  jncto-ierv  you  organabonk 
oneral;  security  eltons  to  s  not  raided  id 
be  a  a ietnute  to  ithet  sunt,  -.hurts 
Gaiety  a  it!  rrv  jr  Khle  to  security 
breaches  or  to  de'ouxifs  n  overall  sens 
nty  rtteasues  The  tideway  Sacurtty  Anil 
6  subnet  i>  unyje  Inns  ad  Conduits. 
Comae;  a  setts  leprseatiw;  a  lifl> 
GWtWA'  ,i  Gateway  am  ton  kkeapy 


2  The  free  SecuityAudrt  must  be  sched 
uled  and  late  place  during  business 
tens  (M-f  8am  to  5pm  local  tme)  with¬ 
in  45  days  of  server  purchase  Nocredn 
a  (team  If  the  customer  chooses  to  not 
accept  the  Sanity  Audd  One  Security 
Aurkt  per  sw\«  purchased  Otter  only 
avattxe  to  fitness  are  Institutional 
customers,  and  cam*  be  comtmed  with 
i  any  other  ottos  or  promotions 


3  Pocket 
Sheets  tor 
Microsoft 
Windows  CE 
requires 
Windows  CE 
20  or  later 
Hardware 
available 
separately 


4.  Limited  warranties  and  service  agreements  apply:  visit 
aateway.com  or  call  1-800-846-2000  for  a  free  copy. 
Technician  will  be  dispatched,  if  deemed  necessary  by 
Gateway,  following  other  troubleshooting  methods.  On¬ 
site  service  not  available  in  all  locations;  you  may  be 
required  to  take  or  send  your  product  to  an  authorized  serv¬ 
ice  location.  On-site  service  excludes  mice,  keyboards, 
docking  stations,  external  peripherals  and  monitors. 


5.  Prices  and 
configurations 
subject  to 
change  with¬ 
out  notice  or 
obligation 
Prices  exclude 
slapping  and 
handling  and 
taxes 


6  Leasing  provided 
by  independent  leas¬ 
ing  companies  to 
qualified  commercial 
customers.  Lease 
payment  quoted  is 
FMV  lease.  Lease 
terms  subject  to 
change  without 
nooceoroUgabon 


7  FCC  Class  A  products  may  not  be  sold  for  home  use.  8.  E-3600  special  price,  offer  expees 
6/3002.  no  other  discerns  apply.  (©2002  Gateway.  Inc  All  nghts  resented.  Gateway  Terms  & 
Conditions  of  Sale  apply  Not  responsible  for  typographical  errors  Gatewaycom  and 
Gateway  Country  Stores.  U.C  are  separate  legal  entities.  Gateway,  die  Gateway  Stykied 
Logo.  Solo  and  the  Black-and-  White  Spot  Design  are  tiademarks  or  registered  trademarks  of 
Gateway,  kc  in  the  U  S.  and  other  countnes  Intel,  the  Intel  Inside  Logo  and  Pentium  are 
trademarks  or  registered  trademarks  of  Intel  Corporation  or  its  subsxkanes  m  the  United 
States  and  other  countnes  Microsoft  and  Windows  are  registered  trademarks  of  Microsoft 
Corporation  in  the  US.  and  other  countnes  All  other  brands  and  product  names  are  trade¬ 
marks  or  regetered  trademarks  of  die#  respective  companies  Ad  Code  007835 


SHAPING  YOUR  NETWORK 


Traffic  shapers  ease  WAN  congestion 


HOW  IT  WORKS 


Traffic  shaping 


Traffic  shaping  uses  a  token  bucket  mechanism  to  limit 
traffic  to  a  predetermined  constant  rate  and  send 
bursts  of  traffic  that  exceed  the  rate  into  a  buffer. 


Router  sets  predetermined 
rate  of  traffic  and  sends 
tokens  into  token  bucket 
at  that  constant  rate. 


o 


Traffic  seeks  admittance 
to  the  network. 


.  Data  packets 

□  □□ 


Router's  queue  regulator 
requests  a  certain  number  of 
tokens  from  the  token  bucket 
for  each  packet,  depending 
on  the  size  of  the  packet. 

'  \ 

If  tokens  are  available, 
the  packet  is  transmitted. 

y 

2T 


CPCP 


If  tokens  are  not 
available,  the  packet 
is  queued  in  a  buffer. 


■  BY  KEVIN  DAVIS 

Finding  a  solution  to  network  congestion 
requires  a  balance  of  technical,  fiscal,  per¬ 
sonnel  and  political  resources.  The  first 
step  is  to  gain  an  understanding  of  the 
length  and  frequency  of  network  conges¬ 
tion  through  the  use  of  network  probes 
and  analyzers. 

If  the  length  of  network  congestion  is 
short,  simple  queuing  mechanisms  and 
traffic  prioritization  of  a  few  key  network 
applications  can  reduce  latency  and  im¬ 
prove  application  performance  to  accept¬ 
able  levels. 

If  congestion  is  a  bigger  problem,  more 
aggressive  and  perhaps  intrusive  steps  must 
be  taken.  Such  measures  could  include 
traffic  shaping  and  policing,  or  when  the 
congestion  interval  grows  so  large  that 
policies  are  not  effective, circuit  upgrades. 

Traffic  shaping  is  the  least  aggressive  of 
the  three  measures.  It  is  a  dampening  func¬ 
tion,  as  it  seeks  to  delay  application  traffic 
entering  the  network  by  buffering  bursts 
that  exceed  predefined  rates. 

Traffic  shaping  uses  a  token-bucket 
mechanism. A  token  bucket  works  via  a  sys¬ 
tem  counter  on  the  router  or  switch,  and 
has  three  components  that  are  related  by 


Got  great  ideas 


■  Network  World  \s  looking  for  great 
ideas  for  future  Tech  Updates.  If  you 
have  one  and  want  to  contribute  it  to  a 
future  issue,  contact  Features  Editor 
Neal  Weinberg  (nweinberg@nww.com). 


the  equation  R  =  B/T 

•  R  —  Mean  rate  (the  rate  at  which  the 
bucket  fills  with  tokens). 

•  B  —  Burst  size  (the  size  of  the  bucket). 

•  T  —  Time  interval  (the  measurement 
time). 

Thus,  the  size  of  the  token  bucket  is  the 
maximum  value  of  the  counter  and  is 
equal  to  the  burst  size.Tokens  are  placed  in 
the  bucket  by  the  operating  system  of  the 
router  at  a  constant,  or  mean,  rate,  R.  When 
the  bucket  becomes  full  (the  counter 
reaches  its  maximum  value),  new  tokens 
are  “discarded.” 


When  application  traffic  seeks  admit¬ 
tance  to  the  network,  the  queue  regulator 
for  that  interface  requests  a  certain  num¬ 
ber  of  tokens  for  each  packet  depending 
on  the  size  of  the  packet.  For  example,  the 
regulator  will  request  three  tokens  for  a 
1 ,500-byte  packet  and  one  token  for  a  500- 
byte  packet. 

If  there  are  available  tokens  (the  counter 
has  a  value  greater  than  or  equal  to  the 
number  of  tokens  requested),  the  packet  is 
transmitted.  If  there  are  not  enough  tokens, 
the  packet  is  queued  at  the  interface. 

The  mean  rate  specifies  that  over  a  given 


period  of  time  a  certain  number  of  bits  can 
be  transmitted  by  the  network  interface  of 
the  router  into  the  WAN. 

Because  traffic  shaping  smoothes  out  ap¬ 
plication  bursts  by  buffering  excess  bursts 
at  the  network  edges,  it  can  reduce  net¬ 
work  congestion  to  acceptable  levels 
where  simple  queuing  algorithms  such  as 
weighted  fair  queuing  and  priority  queu¬ 
ing  would  fail  —  these  queuing  algorithms 
working  alone  propagate  bursts  into  the 
network. 

As  with  traffic  shaping,  traffic  policing 
uses  the  token-bucket  mechanism  to 
limit  application  traffic  to  defined  rates 
configured  on  the  router  by  a  network 
administrator. 

However,  instead  of  buffering  noncon¬ 
forming  traffic,  it  works  by  either  dropping 
traffic  when  there  are  not  enough  avail¬ 
able  tokens  in  the  token  bucket  to  trans¬ 
mit  the  packet,  or  lowering  the  priority  of 
the  packet  before  transmitting  it.  While 
this  does  not  smooth  traffic  bursts,  it  also 
does  not  add  any  queue  time  to  applica¬ 
tion  traffic  (though  dropped  packets  will 
have  to  be  retransmitted). 

Using  traffic  shaping  and/or  policing 
(they  can  be  used  together)  to  reduce  con¬ 
gestion  within  your  network  can  signifi¬ 
cantly  increase  the  levels  of  service  your 
network  provides  to  applications. 

This  will  let  you  create  rigorous,  yet  flexi¬ 
ble,  policies  to  efficiently  avoid  bottlenecks 
and  improve  end-user  performance  with¬ 
out  having  to  go  through  unnecessary 
expensive  circuit  upgrades. 

Davis  is  a  performance  consultant  for 
NetQoS.  He  can  be  reached  at  kevin. 
davis@netqos.  com. 


Dr.  Internet 


By  Steve  Blass 


We  read  your  recent  column  (www.nwfusion 
.com,  DocFinder:  9033)  on  Secure  Shell.  We're 
using  OpenSSH  2.9  with  the  SSH  Version  2  pro¬ 
tocol  (ssh-keygen  -t  rsa)  on  OpenBSD  2.9.  Your 
column  mentions  how  to  use  a  key  pair  with  a 
pass  phrase.  But  this  doesn't  accomplish  the 
stated  goal  of  transferring  files  without  any 
user  interaction,  because  you  still  need  to 
enter  a  pass  phrase.  Can  you  automate  this 
without  entering  a  pass  phrase? 


You  may  enter  a  blank  pass  phrase  for  ssh  by 
pressing  the  Enter  button  when  prompted  for  a 
pass  phrase  by  ssh-keygen.  When  you  do  that, 
you'll  get  a  key  that  requires  no  pass  phrase.  My 
copies  of  ssh-keygen  all  say  “Enter  pass  phrase 
(empty  for  no  pass  phrase):"  when  it  prompts 
for  the  pass  phrase  during  key  creation.  As  an 
alternative,  you  can  protect  your  private  keys 
with  a  pass  phrase  and  still  be  able  to  use  the 
keys  without  typing  the  pass  phrase  every  time 


by  using  the  ssh-agent  program.  Run  ssh-agent, 
copy  the  output  to  the  command  line  to  prepare 
your  environment  variables,  then  run  ssh-add. 
This  adds  your  private  keys  to  ssh-agent.  Now 
you  can  use  ssh  repeatedly  without  re-entering 
your  pass  phrase  every  time. 

Blass  is  a  network  architect  at 
Change@Work  in  Houston.  He  can  be  reached 
at  dr.internet@changeatwork.com. 
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Lit:  see, XML  (check), SOAP(check), 
namespaces  (check), XSD  (check)  . 
.  .yep,  were  well  on  the  way  to  cov¬ 
ering  the  basic  technical  territory  of  Web 
services.  And  you  might  like  to  check  out 
Network  World's  Web  services  research 
page  (www.nwfusion.com,  DocFinder: 
9038). 

Actually,  we’re  sailing  away  from  the 
established  core  technologies  of  Web 
services  and  moving  out  into  the  less  sta¬ 
ble  seas  of  technologies  that  are  ma¬ 
turing  and  stabilizing.  Here  we’re  talking 
about  Web  Services  Definition  Language 
(WSDL)  and  Universal  Description,  Dis¬ 
covery  and  Integration  (UDD1). 

WSDL  is  a  proposal  that  Microsoft  and 
IBM  put  forward  to  the  World  Wide  Web 
Consortium.  It  is  a  system  for  defining 
how  a  Web  service  is  exposed  in  terms 
of  the  connection  and  protocols  it 
offers.  WSDL  definitions  are,  of  course, 
written  in  XML. 

According  to  Microsoft,“a  WSDL  file  is 


Running  down  the  Web  services  checklist 


an  XML  document  that  describes  a  set 
of  SOAP  messages  and  how  the  mes¬ 
sages  are  exchanged.  In  other  words, 
WSDL  is  to  SOAP  what  IDL  is  to  CORBA 
or  COM.” 

To  put  this  definition  another  way, 
WSDL  specifications  of  Web  services  are 
formal  abstract  descriptions  of  “end¬ 
points”  (ports)  and  messages.  The  issue 
of  abstraction  is  important  because  by 
abstracting  we  can  reuse  definitions  of 
components. 

So  what  we  have  through  WSDL  are 
abstract  definitions  of  messages  — 
descriptions  of  data  being  exchanged 
—  and  definitions  of  ports  that  are  ab¬ 
stract  collections  of  operations.The  con¬ 
crete  protocol  and  data  format  specifi¬ 
cations  for  a  set  of  port  types  constitute 
what  are  called  a  reusable  binding  —  a 
Web  service  that  we  can  access. 

To  define  a  Web  service,  a  WSDL  docu¬ 
ment  uses  these  abstract  elements: 

•  Types  —  containers  for  data  type  defi¬ 
nitions  (for  example,  using  XSD  —  see 
“XSD  gets  even  more  interesting,”  www. 
nwfusion.com,  DocFinder:  9039). 

•  Messages  —  typed  definitions  of  mes¬ 
sage  contents  (data)  being  transferred. 

•  Operations  —  descriptions  of  actions 
supported  by  services. 

•  Port  types  —  a  set  of  operations  sup¬ 


ported  by  one  or  more  endpoints. 

•  Bindings  —  concrete  protocol  and 
data-format  specifications  for  particular 
port  types. 

•  Pbrts  —  endpoints  defining  combina¬ 
tions  of  bindings  and  network  addresses. 

•  Services  —  collections  of  related 
endpoints. 

To  put  it  simply,  WSDL  is  a  template  to 
describe  services  and  how  they  should  be 
used  by  clients. 

But  how  do  you  find  a  Web  service? 
The  currently  putative  answer  is  UDDI. 
UDDI  is  a  set  of  protocols  and  public 
directories  for  the  registration  and  real¬ 
time  lookup  of  Web  services  —  a  sort  of 
Yellow  Pages  for  Web  services.  UDDI 
(again,  mainly  a  creation  of  IBM  and 
Microsoft)  was  officially  released  in  May 
200 l,and  Microsoft  explains  that  a  UDDI 
directory  entry  is  “an  XML  file  that 
describes  a  business  and  the  services  it 
offers”  (see  www.nwfusion.com,  Doc¬ 
Finder:  9040). 

As  Microsoft’s  explains  it,  “There  are 
three  parts  to  an  entry  in  the  UDDI  direc¬ 
tory.  The  ‘white  pages’  describe  the  com¬ 
pany  offering  the  service:  name,  address, 
contacts,  etc.  The  ‘yellow  pages’  include 
industrial  categories  based  on  standard 
taxonomies  such  as  the  North  American 
Industry  Classification  System  and  the 


Standard  Industrial  Classification.  The 
‘green  pages’  describe  the  interface  to  the 
service  in  enough  detail  for  someone  to 

To  put  it  simply,  WSDL 
is  a  template  to  de¬ 
scribe  services  and 
how  they  should  be 
bound  (that  is,  used) 
by  clients. 

write  an  application  to  use  the  Web  ser¬ 
vice.  The  way  services  are  defined  is 
through  a  UDDI  document  called  a  Type 
Model  or  tModel.  In  many  cases,  the 
tModel  contains  a  WSDL  file  that  de¬ 
scribes  a  SOAP  interface  to  an  XML  Web 
service,  but  the  tModel  is  flexible 
enough  to  describe  almost  any  kind  of 
service.” 

You  can  find  out  (a  lot)  more  about 
UDDI  at  www.uddi.org. 

Next  week,  we  wrap  up  Web  sewices. 
Sighs  of  relief  to  gearhead@gibbs.com. 


Cool 

Quick  takes 
on  high  tech  toys 

By  Keith  Shaw 


Your  joy  or  disappointment  with  Sharp’s  Linux-based 
PDA  will  depend  on  whether  you’ve  ever  used  a  PDA 
before. 

If  you  are  brand-new  to  the  world  of  PDAs, you’ll  find  the 
Zaurus  SL-550  a  great  combination  of  personal  produc¬ 
tivity  and  fine  multimedia  entertainment,  integrated  into 
a  sleek  package.  If  you  are  graduating  from  a  Palm  or 
Pocket  PC,  you  might  find  nothing  earth-shattering  with 
the  new  device. 

Either  way,  the  PDA  has  some  first-generation  kinks  that 
need  to  be  worked  out,  so  it’s  tough  to  say  that  Sharp  hit 
a  home  run  with  this  product.  Let’s  settle  for  a  ground- 
rule  double. 

On  the  hardware  side,  the  Zaurus  is  a  gorgeous  device  — 
it  features  a  pretty  bright  screen  that  can  display  more  than 
65,000  colors  The  Zaurus  has  64M  bytes  of  internal  mem¬ 
ory,  a  200  MHz  Intel  StrongARM  processor,  expansion  slots 
for  Compact  Flash  and  Secure  Digital  cards,  and  an  inte¬ 
grated  keyboard  that  appears  when  you  slide  out  the  bot¬ 
tom  part  of  the  PDA  feripherals  that  can  be  attached  to  the 
Zaurus  include  ari  ''02.1  lb  card  for  wireless  LAN  connec¬ 
tivity,  a  Compact  Flash-based  digital  camera  and  other 
cards  su  i<  as  extra  memory  and  Ethernet  connectivity 
Navigation  buttons  on  the  front  of  the  device  are  easy  to 
unde; stand  with  icons  for  home  page, email, contacts  and 
calc:  lar  as  well  as  a  four-direction  button  for  scrolling. 

It’s  on  the  s'  .(rware  side  where  some  of  the  kinks  arrive, 
especially  with  synchronization.  The  synchronization  but¬ 


Linux-based  PDA  is  pretty  Sharp 


ton  on  the  charging  cradle  only  works  after  you’ve  placed 
it  in  the  cradle  and  have  run  the  synchronization  software 
from  the  desktop.  After  that,  the  sync  button  should  work, 
but  a  few  times  we  had  to  hold  the  button  down  longer 
than  with  a  Palm  or  Pocket  PC.  Also, 
we  discovered  a  bug  when  the 
synchronization  software  didn’t  re¬ 
cognize  the  change  to  daylight-sav¬ 
ing  time. 

We  also  saw  some  odd  behavior  in 
the  calendar  application,  and  when 
we  installed  the  drivers  there  were  a 
few  crashes.  But  we  feel  Sharp  will 
address  these  problems  in  future  soft¬ 
ware  updates. 

The  other  software  applications  are 
pretty  good  —  we  especially  enjoyed 
the  Media  Player,  which  plays  MPEG-1 
video  clips  and  MP3  audio  files.  The 
device  comes  bundled  with  the  Han- 
com  Office  Suite,  which  includes  appli¬ 
cations  for  viewing  and  editing  Word  and 
Excel  files,  and  for  viewing  PowerPoint 
files.  Other  applications  included  an 
Opera  Web  browser  (which  we  didn’t  test 
because  we  had  no  Internet  connections) 
and  an  image  viewer. We  also  enjoyed  a  bet¬ 
ter  variety  of  bundled  games  on  the  Zaurus 
than  on  other  PDAs,  although  we  think  the 
computer  cheats  at  the  Scrabble-like  game. 

Navigating  through  the  programs  is  not  too 


The  Sharp  Zaurus  SL-550  has  a  few  kinks,  but  is 
still  a  good  PDA. 


difficult,  similar  to  a  Pocket  PC.  Multiple  applications  can 
be  opened  at  the  same  time,  or  you  can  close  them  before 
starting  another  one.  A  button  on  the  lower  left  part  of  the 
screen  is  similar  to  the  Windows  “Start” 
menu  system. 

The  rechargeable  lithium-ion  battery 
gave  us  1  hour  and  42  minutes  of  battery 
life  with  constant  usage  (we  kept  repeat¬ 
ing  the  same  five  songs  on  the  Media 
Player  and  disabled  all  the  power  man¬ 
agement  features).  However,  with  power 
management  on,  the  battery  should  last 
much  longer. 

At  the  time  of  testing,  there  were  52 
software  products  available  through 
www.myzaurus.com,  which  has  a  part¬ 
nership  with  the  Web  site  Handango. 
That  number  pales  in  comparison 
with  software  available  for  Palm  and 
Pocket  PC  devices,  but  you  would 
expect  that  with  a  new  device.  Be¬ 
cause  the  device  runs  on  open- 
source  Linux  and  also  can  run  Java 
applications,  it  shouldn’t  take  too 
long  before  developers  make 
applications  for  the  Zaurus. 

If  Sharp  can  address  some  of 
the  software  bugs  on  the  syn¬ 
chronization  side,  the  Zaurus 
is  a  fine  first  entrant  into  the 
PDA  market. 

Shaw  can  be  reached  at 
kshaw@nww.  com. 


SHARP 


;  www.nwfusion.com 


Opinions 


4/22/02 


if? 


I* 


Face-off 


Should  vendors  be  liable  for 
their  software's  security  flaws? 


Two  industry  leaders  debate  whether  vendors  should  be  accountable  for  vulnerable  products. 


YES  by  Bruce  Schneier 


etwork  security  is  not  a  technological  problem;  it’s  a  business  problem. The 
only  way  to  address  it  is  to  focus  on  business  motivations. To  improve  the 
security  of  their  products,  companies  —  both  vendors  and  users  —  must 
care;  for  companies  to  care,  the  problem  must  affect  stock  price.The  way  to 
make  this  happen  is  to  start  enforcing  liabilities. 

The  only  way  to  get  many  companies  to  spend  significant  resources  to  ensure  the 
security  of  their  customers’  data  is  to  hold  them  liable  for  misuse  of  this  data.  Similarly, 
the  only  way  to  get  software  vendors  to  reduce  features,  lengthen  development  cycles 
and  invest  in  secure  software  development  processes  is  to  hold  them  liable  for  security 
vulnerabilities  in  their  products. 

Legislatures  could  impose  liability  on  the  computer  industry  by  forcing  software  manu¬ 
facturers  to  be  subject  to  the  same  product  liability  laws  that  affect  other  industries.Then, 
if  they  produce  defective  products,  they  will  be  liable  for  damages.  Even  without  this, courts 
could  impose  liability-like  penalties  on  software  manufacturers.This  is  happening  in  relat¬ 
ed  cases.  Judges  have  issued  restraining  orders  against  companies  with  insecure  networks 
that  are  used  as  conduits  for  attacks  against  others.  Companies  that  have  used  customer 
data  in  violation  of  their  privacy  promises  or  collected  data  using  misrepresentation  or 
fraud  also  have  been  penalized.  A  U.S.  judge  forced  the  Department  of  the  Interior  to  take 
its  network  off-line  because  it  couldn’t  guarantee  the  safety  of  American  Indian  data. 

How  ever  it  happens,  liability  changes  everything.  Today,  software  vendors  can  add 
product  features  and  complexity  without  thinking  twice.  Liability  would  force  them  to 
consider  whether  such  additions  are  really  necessary 

Once  liabilities  are  established,  the  insurance  industry  will  step  in.  Companies  will 
have  no  choice  but  to  buy  network  insurance,  just  as  they  buy  theft  or  fire  insurance 
today.  Liabilities  are  variable-cost  risks.The  insurance  industry  is  in  the  business  of  turn¬ 
ing  those  risks  into  fixed  expenses.  Insurance  companies  are  going  to  move  into  cyber¬ 
insurance  in  a  big  way  And  when  they  do,  they’re  going  to  drive  the  computer  security 
industry,  just  like  they  drive  the  security  industry  in  the  brick-and-mortar  world.  Insur¬ 
ance  companies  will  need  mechanisms  to  reduce  risk  and  will  quickly  start  charging 
different  premiums  for  different  levels  of  security 

Internet  security  benefits  everyone.  In  our  society  we  protect  our  environment, 
healthy  working  conditions, safe  food  and  drug  practices,  and  sound  accounting  prac¬ 
tices  by  legislating  and  making  companies  liable  for  taking  undue  advantage  of  them. 
This  kind  of  thinking  is  what  gives  us  bridges  that  don’t  collapse,  clean  air  and  water, 
and  sanitary  restaurants. We  don’t  live  in  a“buyer  beware” society;  we  hold  companies 
liable  for  taking  advantage  of  buyers. 

There’s  no  reason  to  treat  software  any  differently  from  other  products. When  Firestone 
produced  a  tire  with  a  systemic  flaw,  the  company  was 
held  liable  for  the  resulting  damages.  Meanwhile,  Microsoft 
can  produce  an  operating  system  with  multiple  systemic 
flaws  and  not  be  liable.  This  makes  no  sense,  and  it’s  the 
reason  security  is  so  bad  today 


NO  by  Harris  Miller 


Schneier  is  CTO  of  Counterpane  Internet  Security,  a  secu¬ 
rity  monitoring  company  in  Cupertino,  Calif.  He  can  be 
reached  at  schneier@counterpane.com. 


he  prospect  of  software  vendor  liability  is  gaining  momentum  in  some  gov¬ 
ernment  and  legal  circles.  Some  government  and  private  sector  CIOs  have 
suggested  imposing  sanctions  on  vendors  whose  software  is  breached  by 
viruses  or  other  forms  of  intrusion, or  increasing  the  exposure  of  software  and 
system  vendors  to  liability  for  such  breaches.  But  doing  so  will  jeopardize 
innovation,  U.S.  competitive  advantage  and  benefits  to  consumers. 

The  potential  costs  of  such  highly  subjective,  generally  frivolous  lawsuits  are  dramatic. 
Civil  liability  actions  against  technology  makers  would: 

•  Oversimplify  the  situation.  Software  is  not  and  never  can  be  infallible.  It  is  a  prod¬ 
uct  of  engineering,  and  like  other  products  of  engineering  —  automobiles,  airplanes, 
buildings,  bridges  —  the  results  are  not  perfect.  No  product  can  be  100%  secure  or 
operate  flawlessly  under  every  conceivable  circumstance.  As  technology’s  benefits  in¬ 
crease, so  do  the  ways  users  find  to  misapply,  misuse  or  modify  it.  In  the  security  realm, 
vendors  are  sometimes  left  playing  catch-up  as  an  ever-expanding  number  of  wrong¬ 
doers  find  malicious  uses  for  products.  Software  development  is  a  complex  process 
conducted  in  a  rapidly  changing  business  and  technical  environment.  Furthermore, 
the  performance  of  a  sophisticated  information  system  involves  multiple  facets,  prod¬ 
ucts  and  factors.  Focusing  on  civil  liability  for  alleged  software  flaws  diverts  time,  atten¬ 
tion  and  resources  from  solving  customer  problems. 

•  Stifle  innovation.  Vendors  are  always  working  to  create  better  and  more  secure  pro¬ 
ducts,  and  allowing  this  development  is  best  for  consumers.  Free  market  competition 
dictates  this.  Market  forces  are  at  work  so  software  companies,  service  providers  and 
technology  users  compete  on  the  basis  of  security  and  functionality. The  best  produc¬ 
ers  of  high-qualitysecure  software  garner  the  most  customers  and  succeed  in  this  com¬ 
petitive  environment.  To  introduce  additional  risk  into  this  atmosphere  will  curb  or 
even  halt  the  development  of  newer  and  more  secure  products. 

•  Compromise  global  leadership.  Civil  liability  lawsuits  will  not  only  chill  innovation 
but  also  the  U.S.  competitive  advantage  in  the  $200  billion  global  software  industry. The 
U.S.  plaintiff’s  bar  and  system  is  unparalleled,  and  actions  by  the  bar  that  could  hinder 
product  development  would  result  in  lost  technical  jobs  and  productivity,  jeopardizing 
our  industry’s  leading  position  in  global  markets. 

•  Punish  the  wrong  people.  Perhaps  the  most  troublesome  result  of  pursuing  civil  liabil¬ 
ity  for  vulnerabilities  is  the  shift  away  from  wrongdoers.The  legal  community  would  better 
serve  its  clients  and  citizens  by  supporting  enhanced  prosecution  of  computer  crimes, 
stiffer  penalties  for  hackers  and  increased  cybercrime  training  for  law  enforcement. 

We  cannot  legislate  quality  productivity  or  innovation. The  marketplace  sets  those  ex¬ 
pectations.  Having  said  that,  computer  use  —  and  computer  crime  —  will  continue  to 

increase  this  year.  Lawsuits  aimed  at  software  vendors  for 
creating  products  vulnerable  to  attack  is  the  technical 
equivalent  of  charging  safe  makers  with  negligence  be¬ 
cause  bank  robbers  crack  safes.  Let’s  focus  our  legal  system 
on  the  real  bad  guys. 


More  online! 


Log  on  to  Network  World  Fusion  to  voice  y our 
opinion  on  this  topic.  Face-off  authors  Bruce 
Schneier  and  Harris  Miller  will  add  their 
thoughts  to  the  discussion. 
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Miller  is  president  of  the  Information  Technology 
Association  of  America,  a  trade  organization  representing 
the  U.S.  IT  industry.  He  can  be  reached  at  hrniller@itaa  org 
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EDITORIAL 

Christine  Burns 


sets  stage  for 
N+l  2002 

I’ve  spent  the  better  part  of  the  past  two  weeks 
hanging  out  in  a  warehouse  in  Belmont,  Calif.,  with 
90  engineers,  $23  million  in  network  gear,  48,000 
volt  amps  of  power  (which  was  not  enough,  by  the 
way),  more  than  450  active  patch  cables,  1,400  cans  of 
Coke,  860  candy  bars,  20  half-pound  bags  of  beef  jerky 
and  a  dozen  Asian  pears. 

True,  we  are  not  talking  about  fine  dining  here,  but 
we  are  certainly  talking  about  some  serious  network 
testing. 

I  attended  the  hot  stage  event  that  literally  sets  the 
stage  for  InteropNet  Labs  (iLabs).the  experimental 
subnet  of  the  NetWorld+lnterop  2002  Las  Vegas  net¬ 
work  infrastructure.  Each  year,  the  iLabs  team  —  made 
up  mainly  of  network  professionals  who  volunteer 
their  time  for  this  cause  —  pinpoints  three  up-and- 
coming  network  technology  focus  areas  and  sets  out 
to  test  whether  the  reality  lives  up  to  the  hype. The  des¬ 
ignated  team  leads  scour  the  market  for  products 
whose  vendors  claim  they  support  the  targeted  tech¬ 
nology  areas,  and  all  are  invited  to  participate  in  the 
testing  process.The  iLabs  team  prides  itself  on  the  fact 
that  any  and  all  marketing  baggage  is  checked  at  the 
door  of  the  warehouse.  The  end  result  is  an  honest 
assessment  of  how  useful  these  technologies  will  or 
won’t  be  in  your  network. 

The  technologies  to  be  featured  at  next  month’s  show 
are:  wireless  LAN  security  based  on  the  802. IX  standard; 
storage-area  networks  based  on  the  iSCSI  draft  specifica¬ 
tion;  and  Multi-protocol  Label  Switching  interoperability 
for  point-to-multipoint  Layer  2  VPNs.  In  all,  the  iLabs  team 
hammered  on  more  than  200  products  in  varying 
degrees  of  development  from  83  vendors. 

Network  World  recently  signed  on  as  the  media  sponsor 
of  the  iLabs  and  therefore  has  exclusive  access  to  the 
iLabs  hot  stage  testing  ground.  We’ve  taken  advantage  of 
this  access  by  placing  members  of  our  own  Global  Test 
Alliance  on  the  iLabs  engineering  teams.  Our  experts 
will  present  their  findings  in  a  special  package  of  stories 
in  the  May  6  issue  of  Network  World. 

And  it  you’re  attending  the  show, don’t  miss  the  iLabs 
booth  (No  6027,  located  in  the  Central  Hall),  where  you 
can  get  a  hands-on  demonstration  of  the  tests  and  tap 
the  engine  ers  who  conducted  them.  I  can’t  promise 
you  any  beef  jerky  (or  an  Asian  pear,  for  that  matter), 
but  1  can  guarantee  that  you’ll  get  something  more 
valuable  —  honest  data  about  these  three  network 
technologies. 


Great  IPX-pectations 

Regarding  Kevin  Tolly’s  column  “What  are  your  IPX- 
pectations?”  (www.nwfusion.com,  DocFinder:  9030): 
My  organization  uses  Macintoshes  running  System 
9.0  for  our  graphic  arts  lab.  We  have  been  using  an 
IPX  client  from  Prosoft  Engineering  to  connect  to 
our  NetWare  5.0  servers.To  upgrade  to  Gigabit  Ether¬ 
net,  we  would  like  to  work  in  phases  —  the  network 
infrastructure  first,  then  the  servers,  then  the  clients. 
To  do  this,  we  would  need  network  hardware  that 
could  support  IPX  and  multiple  port  speeds 
(lOO/lOOOBase-T)  until  we  upgrade  our  Macs  to  OS 
X  and  lOOOBase-T  in  the  final  part  of  the  project. 

More  than  once  I’ve  heard  a  network  engineer  say 
IPX  should  be  replaced  by  IP  at  our  site  as  soon  as 
possible.  But  IPX  is  working,  and  I  don’t  need  to 
replace  it.  1  enjoy  using  some  of  the  old  tools,  like 
rconsole.  It  would  be  sad  to  lose  tools  that  I  like  just 
because  some  engineer  didn’t  want  to  include  IPX 
compatibility  in  high-speed  switches. 

Larry  Steinke 
Technology  director 
Saint  Francis  High  School 
Mountain  View,  Calif. 

The  most  compelling  reason  for  IPX  services  on 
the  LAN  is  that  you  are  adding  an  extra  layer  of  pro¬ 
tection  and  securityWe  all  must  contend  with  a  high 
level  of  threats  and  vulnerabilities  for  all  our  Internet 
services  and  applications.  Why  not  make  it  a  little 
more  difficult  for  the  attackers  by  running  internal 
applications  and  services  on  a  protocol  that  can  be 
easily  blocked  and  controlled  at  the  edge? 

Kevin  Casey 
Director  of  technical  services 
Allied  Global  Solutions 
San  Marcos, Texas 

E-mail  tellers  to  jdix@nww.com  or  send  them  to  John  Dix,  editor  in 
chief.  Network  World,  1 1 8  Turnpike  Road,  Southborough,  MA  01772. 
Please  include  phone  number  and  address  for  aerification. 


License  to  kill? 

Regarding  “Licensing  flap”  (www.nwfusion.com, 
DocFinder:  9031):  Microsoft  and  other  vendors  price 
products  too  high  to  begin  with.  I  understand  there 
are  copyrights,  and  the  licenses  are  to  give  permis¬ 
sion  to  use  them.  Unfortunately,  Microsoft  and  com¬ 
panies  like  it  feel  that  the  user  owes  them  something 
every  time  he  uses  their  products,  which  is  why  I  feel 
at  times  I  would  like  to  scrap  all  of  my  Microsoft 
products  and  go  for  a  Linux  system. 

It  would  be  really  ironic  if  a  Unix-based  program 
like  Linux  took  over  Microsoft’s  market  share  be 
cause  of  antitrust  laws.  After  all,  that’s  how  the  open- 
source  Unix  got  its  start  —  from  an  antitrust  suit  stat¬ 
ing  AT&T  and  Bell  Labs  couldn’t  sell  their  software. 

Keith  Daugherty 
Fort  Wayne,  Ind. 

The  situation  outlined  in  “Licensing  flap”  is  why,  as 
a  network  integrator,  my  company  is  learning  BSD 
and  Linux.  Open-sourcebased  platforms  and  soft¬ 
ware  will  be  in  high  demand  as  companies  refuse  to 
pay  excess  amounts  for  bells  and  whistles. 

Jason  Cohenour 
Owner 

Automated  Technologies 
Monroe,  La. 

IBM  wanted  my  company  to  purchase  Client 
Access/400  for  our  PCs  to  connect  to  our  IBM  iSeries 
Model  820.  For  our  120  users,  they  wanted  to  hit  us 
up  for  more  than  $28,000. 1  found  a  product  from 
Mochasoft  in  Denmark  that  performs  the  same  func¬ 
tion  equally  well  or  better.  Cost:  $250  for  an  enter¬ 
prise  license.  Another  $250  and  I  covered  every 
printer  in  the  house.  For  us,  it  was  a  no-brainer. 

Matthew  Booher 
Director  of  IT 
ODC  Integrated  Logistics 
Sparks,  Nev. 


—  Christine  Burns 
Test  Alliance  director 
cburns@nww.  com 
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ON  THE  ROAD 

Sandra  Gittlen 


For  storage,  continuity  is  king 


ext  month.  Network  World  launches  its 
Storage  Town  Meeting.  Again,  Steve 
Duplessie,  founder  of  Enterprise 
Storage  Group,  and  1  will 
hit  the  road  to  talk  to  peo¬ 
ple  across  the  country 
about  their  storage  plans. 

The  emphasis  will  be  on  ensuring  business  conti-  g 
nuity. 

This  topic  is  a  far  cry  from  the  one  we  had 
planned  for  our  tour  late  last  year: “Building  a  Superior  Infrastructure.” 
We  were  going  to  talk  about  how  you  could  build  out  your  systems  with 
massive  architectures, add  in  all  these  bells  and  whistles  and  store  more 
data  than  youd  ever  have. Then  the  World  Trade  Center  and  Pentagon 
were  attacked,  and  all  that  changed. 

In  city  after  city  —  we  were  on  the  road  three  weeks  after  Sept.  1 1 
—  we  talked  to  shell-shocked  IT  managers  not  about  building  these 
high-end  storage  monoliths,  but  about  disaster  recovery  and  what 
they  could  do  to  safeguard  their  companies’  intellectual  property, 
including  customer  data  and  corporate  records,  in  the  event  of  a 
disaster. 

This  year  we’ve  adopted  the  theme  that  we  think  best  suits  the  needs 
of  IT  executives  today  Time  and  again,  we  hear  the  term  “ensuring  busi¬ 
ness  continuity  but  there’s  no  end  to  what  that  encompasses.  For  the 
purposes  of  this  tour.it  simply  means  making  sure  that  you  know  every¬ 
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thing  your  company  needs  to  get  back  up  and  running,  and  that  you 
have  a  tested  plan  for  making  that  happen.lt  also  means  that,  depend¬ 
ing  on  your  business  needs,  even  if  for  some  reason  you  aren’t  around, 
your  business  could  be  back  online  in  an  hour,  a 
day  a  week  or  a  month.  You  need  to  know  your 
requirements, and  you  need  to  know  how  you  and 
those  around  you  can  fulfill  them. 

Joining  us  on  the  tour  will  be  presenters  from 
Cisco,  Hewlett-Packard,  Network  Appliance  and 
StorageNetworks.They  will  address  the  breadth  of 
subjects  now  involved  in  storing  and  accessing  your  data,  from  what 
plumbing  you  should  choose  to  whether  you  want  to  house  everything 
on-site  or  off-site. 

They’ll  also  address  the  need  for  service-centric  management,  how 
fiber  optics  will  come  into  play  and  the  status  of  storage-area  networks 
vs.  network-attached  storage. 

Duplessie  will  explain  the  emerging  technologies  and  standards 
you’ll  deal  with  over  the  coming  months.  He’ll  also  tell  you  what  a  crit¬ 
ical  role  storage  resource  management  will  play  in  optimizing  your  net. 

If  you  have  topics  you’d  like  to  see  covered  that  haven’t  been  men¬ 
tioned  here,  let  me  know.  To  register  for  this  event,  which  kicks  off  on 
May  14,  go  to  www.nwfusion.com,  DocFinder:  9032. 

Gittlen  is  Network  World’s  events  editor.  She  can  be  reached  at 
sgittlen  @nww.  com. 


Time  and  again, 
we  hear  the  term 
‘ensuring  busi¬ 
ness  continuity,’ 
but  there's  no 
end  to  what  that 
encompasses. 
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Gig-E,  G-P0N,  Gee-Whiz 


he  snappy  marketers 
that  drove  the  DSL  in¬ 
dustry  to  use  23  of  the 
26  letters  of  the  alphabet  to 
describe  their  technologies  have  moved  to  the  optical  access  side  of 
the  house. We’ve  now  got  A-PON  (ATM  passive  optical  network),  E-PON 
(Ethernet  PON)  and  G-PON  (Gigabit  PON). 

Quantum  Bridge’s  Charlie  Guyer  recently  said, “When  we  started  the 
company,  there  was  no  A-PON  or  E-PON,  there  was  just  PON.  Now  peo¬ 
ple  are  trying  to  divide  it  up  and  paint  one  as  more  beneficial  than  the 
otheCThat  can  get  out  of  hand  quickly,  if  history  shows  anything. 

Those  who  watch  for  exciting  new  technologies  understand  the  need 
to  differentiate  products.  These  signs  of  differentiation  mean  PON  is 
having  an  impact  on  the  market.Technology  costs  have  come  down  to 
a  point  where  deploying  PON  to  small  businesses  and  residences  is 
starting  to  make  sense.  We’re  on  the  way,  but  we’re  not  there  yet. 

PON  provides  interesting  alternatives  for  delivering  multiple  services 
to  businesses  inexpensively.  From  an  enterprise  point  ofview.it  doesn’t 
matter  what  the  specific  underlying  technology  is,  except  as  it  affects 
the  delivery  of  services. 

Carriers  using  PON  can’t  offer  just  data  services  if  they’re  going  to  the 
trouble  of  upgrading  old  links  to  optical  networks;  they  need  to  handle 
voice  and  video,  too. That  means  supporting  time-division  multiplexing 
as  well  as  IP  —  ATM,  frame  relay,  private  lines,  audio  links,  the  works. 
Customers  want  selectable  services  unconstrained  by  access  type. Opti¬ 
cal  can  and  must  fulfill  that  desire. 

In  the  past,  efforts  to  deploy  optical  technology  in  the  local  loop  were 
hampered  by  insufficient  bandwidth  and  limited  to  a  single  service. 
Not  anymore.  The  latest  products  from  vendors  such  as  Alcatel,  Quan¬ 
tum  Bridge  and  others  use  PON  technology  to  deliver  multiple  services 
and  provide  enough  bandwidth  to  handle  future  services. 

Scalability  will  be  an  issue  with  the  early  versions  of  PON,  especially 
if  the  world  keeps  moving  toward  Gigabit  Ethernet  in  the  LAN,  metro¬ 
politan-area  network  and  WAN,  streaming  video,  multimedia  confer¬ 
encing  and  so  on.  Even  a  small  business  will  quickly  need  more  band¬ 


width  to  keep  up. 

The  E-PON  crowd  claims  to  offer  the  potential  for  lower  costs,  greater 
scalability  beyond  A-PON’s  622M  bit/sec  and  compatibility  with  the  rest 
of  the  Ethernet  world.  But  the  group  that  helped  develop  the  A-PON 
standard  (G.983  from  the  ITU-T),  the  Full  Service  Access  Network  coali¬ 
tion,  is  working  on  a  G-PON  standard  that  will  increase  the  bandwidth 
specified  from  622M  to  1 .2G  bit/sec. 

Look  for  companies  such  as  Salira  Optical  Network  Systems  and  Flex- 
Light  Networks  to  come  out  with  equipment  in  advance  of  these  stan¬ 
dards  that  potentially  attains  even  higher  bandwidths.  Others  will  be 
there  when  standards  solidify 

It’s  important  to  note  the  line  rate  has  little  to  do  with  the  underly¬ 
ing  protocol  and  everything  to  do  with  the  state  of  the  (optical)  art 
and  the  politics  around  the  standards  body.  Until  standards  are  set, 
you  will  likely  see  interesting  innovations  to  increase  capacity  and 
improve  operating  efficiencies. To  boost  the  capacity  of  single-fiber 
PON  strands  to  as  high  as  10G  bit/sec,  some  vendors  have  added 
dense  wavelength  division  multiplexing  and/or  coarse  wavelength 
division  multiplexing  to  their  PON  gear. This  lets  carriers  provide  ser¬ 
vice  at  much  lower  costs.  Companies  might  begin  putting  low-cost 
optical  transponders  on  their  premises  to  break  out  wavelengths 
from  PON.  So  technology  previously  used  only  in  long-haul  networks 
is  finding  its  way  into  small  businesses  and  even  homes. 

The  bottom  line  is  that  fiber  is  heading  your  way  As  PON  technology 
continues  to  mature  and  adds  bandwidth  and  other  capabilities,  the 
economics  for  carriers  —  and  therefore  their  customers  —  gets  better, 
and  deployment  increases.  But  like  everywhere  else  in  the  network,  the 
movement  toward  Ethernet  in  the  local  loop  is  driving  a  lot  of  innova¬ 
tion  and  putting  pressure  on  the  ATM  camps  to  innovate. That’s  great, 
because  it’s  going  to  make  more  optical  access  available  to  more  peo¬ 
ple,  sooner. 

Briere  is  CEO  and  McGuire  is  chief  strategy  officer  of  TeleChoice,  a 
market  strategy  consultancy  for  the  telecommunications  industry.  They 
can  be  reached  at  telecomcatalyst@telechoice.com. 


The  bottom  line 
is  that  fiber  is 
heading  your 
way. 


Diild  your  E-business  security 
leave  you  feeling  exposed  ? 


Introducing  Sprint  E|Solutions.SM  Venture  onto  the 
Internet  with  your  best  foot  forward,  safe  from  online 
mayhem.  Under  the  protection  of  Sprint  Evolutions,  your 
business  applications  and  databases  can  remain  secure. 

Our  consultants  understand  that  security  requires  more 
than  just  technology,  and  that  every  business  has  specific 
needs.  By  integrating  the  latest  controls  like  token-based 
authentication  and  identification,  virus  protection,  and 
business  continuity  planning  into  a  sound  management 
process,  we  can  safeguard  you  from  hackers  and  disasters. 

We  offer  unsurpassed  advanced  firewall  protection  to 
ensure  the  integrity  of  your  network.  And  it's  backed  by 
industry-leading  100%  uptime  SLAs. 

Because  our  staff  of  CISSPs  apply  the  best  industry  practices, 
your  E-business  security  can  meet  or  exceed  stringent 
government  standards,  such  as  those  mandated  by  HIPAA. 


In  addition,  Sprint's  managed  security  services  cover  you 
24/7  across  all  time  zones  around  the  world,  365  days  a  year. 

With  security  this  comprehensive,  you  and  your  customers 
can  do  business  without  fear  of  losing  your  shirts. 


Wherever  you  are  in  your  E-business  process, 
we  can  provide  you  with  the  best  route  to  your  goal. 

IP  VPN 
Remote  Access 
Hosting 
CPE  Partners 
Security 

Managed  Services 
Collaboration  Tools 
Consulting 


See  the  difference  for  yourself:  1  866  331-7890  or  www.sprintesolutions.com 
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Back-up  alternatives 
for  laptops 


Picking  the 
best  product 
depends  on  how 
much  control 
you  want  over 
the  process 


BY  PAUL  FERRILL 


Protecting  data  stored  on  corporate  computers  is  standard  operating  proce¬ 
dure.  But  the  proliferation  of  laptops  has  added  a  new  wrinkle  to  this  net¬ 
work  task.  Important  data  is  being  kept  on  laptops, and  it  needs  to  be  backed 
up  with  some  regularity  In  our  review  of  enterprise  laptop  back-up  software  pack¬ 
ages,  we  found  that  four  vendors  are  making  progress  in  automating  this  arduous  task 
for  network  professionals  and  end  users  alike. 


We  looked  at  Computer  Associates’  BrightStor  Mobile  Backup,  NovaStor’s  NovaNet 
Web,  Novell’s  iFolder  and  Storactive’s  LiveBackup.  NovaStor  also  offers  its  product  as 
an  online  service  called  NovaStor  Online  Backup,  which  we  also  used  (See  story, 
“Backup:  In-house  or  outsource?”  page  56).  We  tested  a  Hewlett-Packard  CD-RW  drive 
on  our  test  laptop  using  software  from  Roxio  (See  story  “Taking  your  data  for  a  CD-RW 
drive,”  page  56). 

In  the  end,  if  the  ability  to  do  a  total  system  restore  is  essential,  we  recommend 
Storactive’s  UveBackup.  But  if  you  only  envision  doing  selected  file  restores  and  price 
is  a  big  factor,  go  with  Novell’s  iFolder. 

By  definition,  a  laptop  user  is  assumed  to  be  mobile  because  at  any  time  the  user 
can  close  the  laptop  up  and  take  it  somewhere  else.  Laptop  back-up  products  func¬ 
tion  in  much  the  same  way  that  desktop  back-up  products  do  with  a  few  added  fea¬ 
tures  such  as  the  ability  to  save  incremental  file  changes  to  a  separate  area  on  disk 
when  disconnected  from  the  network.  These  changes  are  transmitted  to  the  server 
when  the  laptop  is  reconnected  to  the  local  network  or  over  a  remote  connection. 

A  reasonable  laptop  back-up  product  covers  single  and/or  multiple  file  restore  and 
total  system  recovery  tasks.  While  nearly  all  the  major  laptop  manufacturers  provide  a 
recovery  CD  that  will  restore  the  machine  to  its  factory  condition,  that  process  leaves 


Net  Results 


LiveBackup  2.5 


3.13 


RATING 


iFolder  1.0 


Company:  Storactive.  Price:  $99  per  client  for  100  nodes. 

Pros:  File-versioning  feature  available;  constantly  monitors  files 
for  changes.  Cons:  Back-up  set  tied  to  physical  machine;  requires 
Microsoft  SQL  Server  2000.  Website:  www.storactive.com 


3.13 

RATING 


Company:  Novell.  Price:  $49  per  client  for  100  clients.  Pros: 
Works  with  any  sever  environment;  very  little  administrator  or 
user  intervention  required.  Cons:  File  versioning  not  supported. 
Website:  www.novell.com 


users  without  their  favorite  applications  or  critical  data  installed.  The  best  solution  is 
to  let  the  back-up  product  create  a  disaster-recovery  CD  that  has  the  operating  system 
and  all  necessary  applications  loaded, so  restoring  the  laptop  to  its  precrash  condition 
is  a  simple,  one-step  operation.  NovaNet  Web  and  LiveBackup  provide  the  ability  to 
create  a “bare-metal"  bootable  recovery  CD  that  does  just  that.The  LiveBackup  process 
was  smoother.  LiveBackup  builds  one  image  that  can  then  be  written  to  a  CD-ROM. 
NovaNet  Web  builds  a  directory  tree  on  the  server  that  is  identical  to  the  disk  that  the 
user  is  trying  to  restore  and  requires  the  user  write  those  files  to  a  CD-ROM. 

At  the  file  level,  there  are  several  ways  to  approach  the  back-up  problem.  First,  peri¬ 
odic  snapshots  of  files  can  be  taken  on  the  client  and  saved  to  the  server.  BrightStor 
Mobile  Backup  and  NovaNet  Web  do  this.  Second,  you  can  track  when  files  are 
opened  and  closed,  and  save  a  copy  each  time.  LiveBackup  uses  this  method.  A  slight 
variation  on  the  theme  is  to  synchronize  files  between  the  client  and  server.  IFolder 
uses  this  technique  coupled  with  a  Web-based  access  method  to  retrieve  files  should 
a  client  not  be  installed. 

All  the  products  use  some  technique  to  determine  what  has  changed  in  a  file  since 
the  last  time  it  was  backed  up.  Storing  incremental  changes  helps  reduce  overall  serv¬ 
er  storage  requirements.  All  the  products  use  a  type  of  local  cache  to  store  changes 
when  disconnected  from  the  network.  Once  a  connection  is  made,  the  results  are 
transmitted  to  the  server. They  also  use  compression  techniques  to  reduce  the  over¬ 
all  size  of  the  files,  and  the  result  is  acceptable  back-up  times,  even  over  a  dial-up 
connection  from  a  hotel  room.The  products  took  approximately  10  minutes  to  back 
up  about  1G  byte  of  files. 

Choosing  the  right  back-up  product  for  your  enterprise  network  comes  down  to 
deciding  how  much  control  you  want  to  maintain  over  the  process. 

Protecting  user  information  with  the  least  amount  of  administration  appears  to  be 
the  goal  of  every  vendor  in  our  roundup.  Each  product  attempts  to  make  as  much  of 
the  process  a  “self-serve”  proposition  as  possible.  In  the  case  of  BrightStor  Mobile 
Backup  and  NovaNet  Web,  the  client  schedules  or  initiates  all  back-up  and  restore 
operations. 

BrightStor  Mobile  Backup,  LiveBackup  and  NovaNet  Web  let  the  user  expressly 
exclude  certain  files  from  the  back-up  process.  Most  companies  won’t  see  a  need  to 
keep  copies  of  a  user’s  MP3  audio  files.They  also  don’t  back  up  discardable  data. 


BrightStor  Mobile  Backup  2.0 


2.93 


RATING 


Company:  Computer  Associates.  Price:  $65  per  client  for 
100  clients.  Pros:  Great  support  for  group  administration. 
Cons:  No  support  for  “bare-metal"  restore;  requires  a  default 
printer  to  be  installed  and  either  Microsoft  Word  or  the  Word 
viewer  to  see  reports.  Website:  www.ca.com 


NovaNet  Web  8.1 


2.93 

RATING 


Company:  Novastor.  Price:  $89  per  client  for  100  clients.  Pros: 
Simple  user  interface;  backups  are  user  controlled.  Cons:  No  way 
to  initiate  file  restoration  from  administrator  console;  no  support 
for  groups  of  users;  scheduled  or  immediate  backups  only. 
Website:  www.novastor.com 


What  s  the 
score? 

LiveBackup 

2.5 

iFolder 

1.0 

BrightStor 
Mobile 
Backup  2.0 

NovaNet 
Web  8.1 

Administration  30% 

3 

3 

3.5 

2.5 

Ease  of  use  25% 

3.5 

4 

3 

3.5 

l 

Performance  25% 

3 

2.5 

2.5 

3 

Documentation  10% 

3 

3 

2.5 

2.5 

Installation  10% 

3 

3 

2.5 

3 

TOTAL  SCORE 

3.13 

3.13 

2.93 

2.93 

Individual  category  scores  are  based  on  a  scale  of  1  to  5.  Percentages  are  the  weight  given  each  category  in  determining  the  total  score.  ■  Scoring  Key:  5:  Exceptional  showing  in  this  category. 
Defines  the  standard  of  excellence.  4:  Very  good  showing.  Although  there  may  be  room  for  improvement,  this  product  was  much  betterthan  the  average.  3:  Average  showing  in  this  category.  Product 
was  neither  especially  good  nor  exceptionally  bad.  2:  Below  average.  Lacked  some  features  or  lower  performance  than  other  products  or  than  expected  1:  Consistently  subpar,  or  lacking  features  b  iny 
reviewed. 
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LiveBackup  nor  Nova- 
Net  Wb  will  let  users  back  up 
and  restore  >pe:ations  from  the 
admin  stiH'ion  console.  The  user 
has  to  go  to  the  client  to  initiate 
eithc  •  process.We’d  prefer  to  have 
the  op'son  of  forcing  client 
machines  to  perform  backups, 
even  though  this  could  cause 
problems  for  a  road  warrior  on  a 
modem.  BrightStor  Mobile  Back¬ 
up’s  console  provides  a  way  to 
initiate  a  restore  from  the  server.  It 
lets  the  user  select  specific  files 
and  schedule  them  to  be  re¬ 
stored. 

LiveBackup  includes  a  System 
Image  Wizard  to  guide  you 
through  the  process  of  creating 
a  bootable  CD  for  a  “bare  metal” 
recovery. To  use  this  feature,  you 
must  enable  the  entire  system 
for  backup.  Creating  images  to 
recover  Windows  XP  systems  is 
not  supported  in  LiveBackup 
Version  2.5,  but  it  will  be  sup¬ 
ported  in  a  future  release.  Se¬ 
lecting  the  entire  system  back¬ 
up  option  could  result  in  huge 
disk  storage  amounts,  depen¬ 
ding  on  how  many  laptops  were 
covered.  LiveBackup  minimizes 
this  problem  by  saving  common 
files  such  as  Windows  system 
files  in  a  shared  database.  This 
reduces  the  amount  of  time 
spent  performing  backups  be¬ 
cause  any  given  system  file  will 
be  copied  to  the  backup  server 
only  once. 

LiveBackup  provides  four  re¬ 
ports  that  give  details  on  client 
activity,  data  profile,  space  con¬ 
sumption  and  charge-back  infor¬ 
mation.  BrightStor  Mobile  Backup 
has  similar  reports  but  requires 
Microsoft  Word  or  a  Word  viewer 
to  view  it  without  printing. 

Ease  of  use 

When  judging  a  product  with 
respect  to  ease  of  use,  it’s  impor¬ 


tant  to  look  at  the  topic  from  the 
user’s  and  the  administrators  per¬ 
spective.  On  the  user  side,  the 
ideal  situation  would  be  an  effort¬ 
less  automatic  system  with  no 
action  required  except  when  you 
need  to  recover  a  file  that  has 
been  corrupted  or  inadvertently 
deleted.  From  the  administrator’s 
side,  automation  is  a  good  thing. 
From  backing  up  the  data  to  tape 
to  automatically  tuning  the  data¬ 
base,  the  more  these  functions 
happen  in  the  background,  the 
better. 

IFolder  was  the  easiest  product 
to  use  from  both  points  of  view. 
The  synchronization  program 
keeps  the  files  in  the  iFolder  di¬ 
rectory  constantly  replicated  be¬ 
tween  system  and  server.  The 
administrator  has  control  over 
how  often  the  updates  take 
place,  so  an  end  user  need  not 
worry.  The  only  hitch  is  that 
iFolder  is  a  synchronization  pro¬ 
duct, so  older  versions  of  files  are 
not  maintained. 

As  a  security  measure,  Live- 
Backup  does  not  support  file 
recovery  from  any  other  machine 
besides  the  one  on  which  the 
files  originated.  While  the  individ¬ 
ual  user  can’t  get  at  his  files  from 
a  different  location,  an  adminis¬ 
trator  can  move  files  from  one 
backup  set  to  another.  LiveBack¬ 
up  uses  wizards  to  step  the  ad¬ 
ministrator  through  different  tasks 
such  as  document  migration. 
Using  this  wizard,  any  type  of  file 
can  be  moved  from  a  source 
computer  to  one  or  more  target 
computers.  Other  LiveBackup 
wizards  include  the  System  Im¬ 
age  Wizard  and  the  Remote  Roll¬ 
back  Wizard,  to  remotely  roll  a 
computer  back  to  a  previously 
known  good  state. 

The  NovaNet  Web  client  uses  an 
interface  similar  to  Windows 
Explorer,  letting  users  choose  the 


Backup:  In-house  or  outsource? 

NovaStor’s  storage  service  works  well  but  can  be  pricey. 


N 


ovaStor  markets  NovaNet  Web  as  a  point 
product  and  as  an  online  service.  If  you 
purchase  NovaNet  Web,  you  install  it  on 
one  of  your  servers  and  handle  backups  your¬ 
self.  If  you  don’t  have  the  staff  to  devote  to  the 
back-up  system,  if  you  don't  have  the  connec¬ 
tivity  to  let  your  road  warriors  connect  to  you, 
or  if  you  don’t  want  the  hassles  of  a  back-up 
system,  you  can  let  NovaStor  Online  Backup 
handle  the  backups  for  you. 

The  online  service  functions  almost  identi¬ 
cally  to  the  enterprise  version  with  the  only 
difference  being  you  have  no  access  to  the 
administration  portion  of  the  program.  We 
gave  NovaStor's  online  back-up  offering  a 
workout,  backing  up  and  restoring  several 
large  files  while  connected  by  DSL. 


Not  too  surprisingly,  it  worked  just  like 
the  NovaNet  Web  product.  Where  NovaNet 
Web  lets  you  create  your  own  restore  CDs, 
the  NovaStor  Online  Backup  service  will 
ship  your  data  to  you  on  CDs  for  $25 
per  disk. 

Some  system  managers  have  reservations 
about  letting  backups  rest  in  someone  else’s 
hands.  While  all  online  back-up  services  let 
you  encrypt  your  data  in  transit  and  in  stor¬ 
age,  that's  not  enough  comfort  for  some 
managers.  Another  issue  is  the  price. 
NovaStor  charges  $18  per  500M  bytes  of 
storage  per  month.  If  you  have  a  lot  of  stor¬ 
age,  this  could  be  reason  enough  for  you  to 
move  to  an  in-house  system. 

—  Paul  Ferrill 


back-up  set  from  which  they  wish 
to  restore  their  files  and  letting 
them  select  individual  files  or  en¬ 
tire  directories  to  restore. 

Storactive  provides  a  number 
of  features,  such  as  its  data- 
aging  service,  which  makes 
keeping  track  of  stored  data 
much  simpler. 

LiveBackup  and  NovaNet  Web 
provide  a  way  to  charge  users  for 
their  storage. This  would  be  espe¬ 
cially  appealing  to  service  pro¬ 
viders  looking  to  add  a  back-up 
solution  to  their  offerings  or  to 
companies  that  charge  back  to 
departments  for  services  that  MIS 
provides. 

All  the  products  tested  provide 
documentation  as  electronic 
files.  LiveBackup’s  documenta¬ 
tion  includes  five  separate  files 
pertaining  to  LiveBackup.  All  the 
documentation  for  these  prod¬ 
ucts,  with  the  exception  of  Nova¬ 
Net  Web,  use  the  bookmarks  fea¬ 
ture  of  Adobe  Acrobat  to  provide 


Taking  your  data  for  a  CD-RW  drive 

Roxio  offers  a  low-end  back-up  and  restore  option. 


c 


D-RW  drives  offer  the  most  flexibility  to 
the  end  user  in  terms  of  laptop  back-up 
processes,  letting  them  choose  how  and 
they  complete  their  data  back-up  proce- 
Must  major  laptop  vendors  offer  CD-RW 
.c  standard  equipment  or  as  an  option.  In 
wo  used  Roxio's  (an  Adaptec  spin-off) 
CD  Creator  5,  which  includes  a  hard  drive 
■  •  >  i  and  a  data  archiving  tool.  We  found 
t  works  well  for  backing  up  and  restoring 
:r.  a  single  laptop  machine. 

ty  comes  responsibility.  Re¬ 


curring  failure  to  remember  to  perform  back¬ 
ups  is  probably  the  main  reason  why  most  orga¬ 
nizations  go  to  some  sort  of  automated  system. 

It’s  also  a  matter  of  time.  In  many  cases,  time 
spent  performing  those  backups  would  be 
much  better  spent  by  someone  in  the  IT  depart¬ 
ment  using  central  resources. 

The  lack  of  centralized  management  tools 
would  have  caused  this  approach  to  come  in  a 
distant  fifth  in  our  test  had  we  scored  the 
product. 

—  Paul  Ferrill 


a  clear  table  of  contents. 

Storactive  was  the  only  com¬ 
pany  that  provided  a  “Quick 
Install”  guide  to  get  you  up  and 
running  in  short  order. 

LiveBackup  and  BrightStor  Mo¬ 
bile  Backup  made  it  especially 
easy  to  install  the  client  software. 
LiveBackup  provides  a  Web- 
based  distribution  point  so  users 
can  browse  to  your  server  from 
any  Web  browser  and  follow  the 
instructions.  BrightStor  Mobile 
Backup  lets  you  install  from  a  CD 
or  use  e-mail  to  distribute  the 
client  installation  files. 

All  these  programs  have  spe¬ 
cial  needs  on  the  server  side  of 
which  you  should  be  aware. 
IFolder  and  LiveBackup  will  take 
over  the  primary  Web  server  on 
your  machine  if  you  let  them. 
They  can  be  configured  to  use 
alternate  ports  but,  by  default, 
use  Port  80,  which  is  the  primary 
HTTP  port.  It  may  surprise  some 
to  learn  that  the  server  portion  of 
Novell’s  iFolder  will  install  on 
Windows  NT/2000  and  on 
NetWare  servers.  On  Windows 
you  must  have  a  Lightweight 
Directory  Access  Protocol-capa¬ 
ble  server  installed  such  as 
Microsoft  Active  Directory  or 
Novell’s  e-Directory  for  NT. 
LiveBackup  requires  the  use  of 
MS-SQL  server,  which  adds  to  the 
cost  of  LiveBackup. 

With  the  three  true  enterprise 
back-up  products,  BrightStor  Mo¬ 
bile  Backup,  LiveBackup  and 
NovaNet  Web  are  relatively  close 
in  features  and  functionality,  the 
bottom  line  could  come  down 
to  price.  If  you  foresee  the  need 
to  do  bare-metal  restores, 
LiveBackup’s  total  system  restore 
is  the  easiest  to  use,  which  could 
reduce  its  total  cost  of  owner¬ 


ship.  At  $89  per  user,  NovaStor 
has  priced  its  Web  Backup  prod¬ 
uct  very  aggressively.  But  Novell’s 
iFolder  is  the  least  expensive  of 
the  bunch.  While  it  might  not 
offer  all  the  functionality  of  its 
competitors,  if  you’re  just  looking 
for  a  way  to  keep  a  back-up  copy 
of  your  important  files  and  to 
access  that  backup  remotely  and 
easily,  it  may  be  the  best  bet. 

Ferrill  is  a  freelance  writer  in 
Lancaster,  Calif.  He  can  be  reached 
at  paul.ferrill@verizon.net. 


we  did  it 


'e  used  an  Hewlett- 
Packard  Omnibook 
6100  laptop  running 
Windows  2000  Professional 
in  our  test  bed.  The  laptop 
included  a  CD-RW  drive, 
30G-byte  hard  drive,  built- 
in  56K  bit/sec  modem,  10/ 
100M  bit/sec  network  and 
802.11b  wireless  connec¬ 
tions.  We  loaded  all  the 
server  software  on  a 
Compaq  ProLiant  5500 
running  Win  2000  Server. 
We  used  the  products  to 
back  up  our  laptop,  and 
then  restored  selected 
files  and  tried  out  any  total 
system  restore  options.  We 
backed  up  over  our  local 
100M  bit/sec  network  and 
over  DSL  connections.  To 
test  the  online  service  we 
used  a  56 K  modem  and 
using  the  laptop’s  wireless 
capability  through  the  DSL 
connection. 
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Jantz’s  Retrospect 
Server  Edition 

A  new  twist 
to  Windows 
backup 


OH  BY  TOM  HENDERSON,  NETWORK  WORLD  GLOBAL  TEST  ALLIANCE 

perating  system  vendors  in  general  have  routinely  fallen  short  in  their 
efforts  to  bundle  good  back-up  applications  that  can  protect  data  on 
servers  and  clients  across  enterprise  networks. 

Dantz  Developments  Retrospect  Server  Edition  Version  5.6  is  unusual  software  that 
addresses  this  operating  system  shortfall  in  a  unique  way  It  provides  incremental  serv¬ 
er  and  workstation  backup  based  on  its  own  cataloging,  rather  than  the  ancient 
archive  bit  offered  by  other  back-up  programs  on  the  market. 


This  methodology  we  found  in  our  testing  of  the  latest  version  of  the  product,  pro¬ 
vides  a  unique  back-up  scheme  for  Windows  servers  and  Windows  and  Mac  clients. 
By  taking  cataloged  snapshots  of  aggregate  data,  Retrospect  creates  its  own  back-up 
filing  system  that  combines  for  speed,  convenience  and  easy  management,  giving  us 
good  reason  to  designate  it  a  World  Class  product. 

Retrospect  builds  its  catalog  based  on  file  name,  creation  date  and  last  modified 
date  attributes,  as  opposed  to  using  the  standard  binary  operating  system  archive  sem¬ 
aphore  used  by  other  back-up  utilities. The  Retrospect  server  builds  a  user-definable 
back-up  set  and  then  builds  backups  based  on  iterative  file  deltas  on  target  clients  and 
servers. 

Retrospect  restores  the  iterative  change  sets  by  collecting  the  catalog  entries  specif¬ 
ic  to  the  target  machine  then  restores  all  at  once, or  to  a  specified  version.This  method 
lets  you  roll  machines  back  to  desired  states.  Dantz  calls  this  feature  IncrementalPlus, 
and  it  gives  users  good  management  support  with  a  minimum  of  administrator  inter¬ 
vention. 

Dantz  also  licenses  clients  and  servers  at  the  same  price, which  is  quite  cost-effective 
compared  with  other  pricing  schemes.  We  tested  the  product  on  a  Windows  2000 
Advanced  Server,  and  a  Windows  98SE  PC  using  a  variety  of  tape  drives  (see  How  we 
did  it,  www.nwfusion.com,  DocFinder:  9026).  Retrospect  installs  as  a  background 
process  at  the  server. 

The  client  software  installs  simply,  and  Retrospect  can  use  multicast  or  broad¬ 
cast  domains,  direct  addressing  or  Windows  Internet  Name  Service  to  find  its 
clients  if  desired,  so  that  missing  roaming  licensed  Retrospect  client  members 


Net  Results 


Dantz  Retrospect  Server  Edition  5.6 


can  be  found  and  backups  started  in  an  unattended  fashion.  We  also  success¬ 
fully  used  Retrospect  over  broadband  VPNs  using  Point-to-Point  and  IP  Security 
protocols. 

Retrospect  supported  all  of  the  writeable  media  in  our  lab,  and  Dantz  maintains 
a  painfully  exact  list  of  tape  drives/autochangers,  CD-RW/DVD-RAM  and  other 
devices  that  it  supports.  Backups  to  server  media  also  are  supported,  although  a 
back-up  set  cannot  exceed  the  size  of  the  volume  of  a  discrete  back-up  media.This 
means  that  CD-RW  devices,  even  though  Retrospect  compresses  data,  aren’t  very 
useful  for  modern  backups,  while  DVD-RAM  drives  might  be.  Dantz  also  uses  a  non- 
Windows-compatible  International  Standards  Organization  file  system  for  CD-write- 
able  devices  that  can’t  be  booted  or  read  by  NT  File  System  or  File  allocation  table- 
based  Windows  machines. 

In  Retrospect’s  favor,  its  ability  to  judge  a  server’s  removable  media  and  back-up 
device  state  and  then  represent  that  visually  is  strong. 

Retrospect  Snapshots  group  files  within  back-up  sets  to  picture  the  state  of  files  with¬ 
in  volumes  that  have  been  selected  for  backup.  Snapshots  keep  the  dependencies  of 
the  files  listed  in  the  Retrospect  catalog  in  groups.  Snapshots  are  easy  to  manipulate, 
and  they  make  restoring  groups  of  files  or  an  entire  volume  simple. 

Although,  because  of  the  Snapshot  method,  restores  made  through  a  search  of  the 
catalog  don’t  have  NTFS  or  Mac  file-sharing  privileges  restored  with  them  unless  the 
files  are  restored  from  a  Snapshot,  making  the  restore-by-search  feature  less  handy 
than  we  had  hoped.  We  used  the  search  feature  during  random  restores,  then  had  to 
manually  cross-reference  a  Snapshot  to  retrieve  files  with  access  permissions  intact. 

Retrospect  is  speedy  in  backup  and  restore  operations,  whether  iterative  periodic 
backups  or  entire  volume  restores.  We  also  did  a  bare-metal  restore  on  98SE  and  Win 
2000  with  success.  Autochanger  operations  were  somewhat  faster  than  competing 
back-up  applications  because  Dantz  let  us  select  back-up  sets  from  specific  tapes 
within  the  autochanger  magazine,  permitting  comparatively  direct  access  during 
backups  and  restores  from  back-up  set  Snapshots. 
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RATING 


Company:  Dantz  Development,  (925)253-3000,  www.dantz.com 
Pros:  Highly  controllable  back-up  processes;  extensive  media 
support;  strong  management  features;  great  documentation. 
Cons:  Lacks  Linux/Unix  support  and  search-and-restore  feature. 


What's  the  score? 


Management/Administration  40% 


Dantz  Retrospect  Server  Edition 


Performance  40% 
Operating  system  compatibility  10% 
Hardware  support  10% 
TOTAL  SCORE 


Individual  category  scores  are  based  on  a  scale  of  1  to  5.  Percentages  are  the  weight  given 
each  category  in  determining  the  total  score.  ■  Scoring  Key:  5:  Exceptional  showing  in  this 
category.  Defines  the  standard  of  excellence.  4:  Very  good  showing.  Although  there  may  be  room 
for  improvement,  this  product  was  much  better  than  the  average.  3:  Average  showing  in  this 
category.  Product  was  neither  especially  good  nor  exceptionally  bad.  2:  Below  average.  Lacked 
some  features  or  lower  performance  than  other  products  or  than  expected  1:  Consistently  subpar, 
or  lacking  features  being  reviewed. 


A  few  missed  steps 

There  are  several  things  missing  from  Retrospect  Server  Edition. The  first  is  support 
for  Linux/Unix/xBSD  as  clients  or  servers.  (Macintosh  is  supported.) 

Also  missing  is  a  Web  browser  interface  to  the  server  application,  which  would  make 
accessibility  easier  for  branch-office  support. 

The  final  shortcoming  we  found  was  that  while  its  back-up  sets  are  easy  to  create, 
they  couldn’t  be  modified  after  creation.  While  some  rigidity  is  acceptable,  it  also 
meant  that  we  created  back-up  sets  that  became  superfluous  but  necessary  for  the 
restoration  process.  Therefore,  back-up 
sets  must  be  well  thought  out  prior  to 
execution  and  aren’t  good  for  experi¬ 
mentation  value.  But  overall,  the  highly 
articulate  convenience  that  Retrospect 
provides  over  competitive  back-up  and 
restore  products  will  be  welcomed  by 
most  network  professionals,  despite  its 
few  rough  edges. 


Global  Test  Allia 


Henderson  is  principal  researcher  for 
ExtremeLabs  of  Indianapolis.  He  can  be 
reached  at  thenderson@extremelabs 


■  Henderson  is  a  member  of  the 
Network  World  Global  Test  Alliance,  a 
cooperative  of  the  premier  reviewers  in 
the  network  industry,  each  bringing  to 
bear  years  of  practical  experience  on 
every  review.  For  more  Test  Alliance  infer 
mation,  including  what  it  takes  to  become 
a  member,  go  to  www.nwfusion.com/alliance. 
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Negotiating  hardware  maintenance 

Critical  needs,  available  resources  and  past  experience  help  executives  justify  service  costs. 


BY  SUZANNE  GASPAR 


When  Jim  Olson  asked  his  hardware  maintenance  provider  two 
months  ago  for  help  upgrading  a  VAX  system,  the  company  told 
him  it  didn’t  have  anybody  on  staff  who  knew  that  box. 


Olson,  CIO  of  Waterbury 
Hospital  in  Connecticut, 
says  RetroFit  Technologies 
surprised  him  with  its  lack  of 
hands-on  experience  with 
his  Digital  Equipment  VAX 
6440  server,  so  he  declined 
the  company’s  offer  to  “just 
come  in  and  look  at  it." 

Instead,  he  turned  to 
Compaq  and  paid  the  ven¬ 
dor  $450  for  a  one-shot 
“Time  and  Materials” service 
to  upgrade  the  server’s  firm¬ 
ware  and  Open/VMS  operating  system. 

The  hospital’s  10-year-old  VAX  was  losing 
horsepower  for  the  critical  laboratory  sys¬ 
tem  running  on  it, so  Olson  decided  to  clus¬ 
ter  two  CPUs.  This  lets  him  squeeze  two 
more  years  of  life  from  the  box  while  the 
hospital  raises  $900,000  to  upgrade  the  lab 
application. 

When  Olson  negotiated  his  one-year 


ow-how 


Network  executives  share  these 

tips  for  nailing  down  a  hardware 

maintenance  agreement: 

•  Review  resumes  and  ask 
about  staff  turnover. 

•  Negotiate  based  on  contract 
length  and  volume,  and  for 
keeping  parts  close  at  hand. 

•*  Check  references. 

Pit  one  vendor  against  the  other. 

•  Have  your  lawyer  add  in  protec¬ 
tion  clauses  and  wiggle  room. 

•  Pay  up  front  and  propose  terms 
such  as  offering  free  office 
space  or  serving  as  a  reference 
to  nail  a  deeper  discount. 


Jim  Olson,  CIO  of  Waterbury 
Hospital,  got  StUCk  with  a 
support  bill  from  Compaq 
when  his  hardware  mainte¬ 
nance  provider  was  unable 

to  upgrade  aVAx. 


maintenance  agreement  for  the  VAX  and  a 
few  other  servers,  he  didn’t  think  to  ask 
RetroFit  if  it  had  someone  who  could  per¬ 
form  a  VAX  upgrade.  “We  didn’t  have  a 
statement  in  the  contract  that  said  if  there 
is  a  lack  of  expertise,  the  vendor  will 
expense  the  engagement  of  the  manufac- 
turerr  he  says. 

Maintaining  older  hardware  is  challeng- 
ing.To  choose  a  maintenance  program  that 
best  meets  your  needs,  IT  executives  rec¬ 
ommend  that  you  assess  your  in-house  IT 
skills  and  that  of  service  providers,  deter¬ 
mine  whether  you’ll  need  access  to  spare 
components  and  know  the  expected  level 
of  risk  for  critical  hardware  failure. 

Hardware  manufacturers,  third-party 
maintenance  providers  and  systems  inte¬ 
grators  offer  various  levels  of  support.  If  you 
have  a  talented  IT  staff  and  spare  parts,  a 
contract  that  stipulates  service  by  the  next 
business  day  might  make  sense.  But  if  you 
lack  on-site  hardware  programs,  it’s  better 
to  choose  access  to  an  engineer  for  trou¬ 
bleshooting  through  a  24-7  agreement  that 
gets  you  on-site  help  within  four  hours. 

You  can  save  money  by  braving  mini¬ 
mum  support  and  increased  downtime  for 
noncritical  gear.  And  while  nobody  knows 
hardware  better  than  the  manufacturer, you 
usually  can  get  a  deeper  discount  by  using 
one  maintenance  provider  to  service  your 
routers,  servers,  PBXs  and  other  gear. 

“Some  companies  save  up  to  50%  by 
going  with  a  third  party  for  hardware  main- 


tenance,”  says  Lawrence  Orans,  senior  ana¬ 
lyst  with  Gartner.  “Satisfaction  is  a  mixed 
bag.The  top  folks  are  pleased  they’re  saving 
money  But  the  guys  in  the  trenches  aren’t 
pleased  because  the  service  isn’t  always 
satisfactory 

Joe  Moore,  IT  director  for  the  Arizona 
Office  of  the  Auditor  General  in  Phoenix, 
has  no  qualms  about  using  a  third-party 
service  provider.“I  have  used  local  partners 
to  set  up  routers,  switches  and  file  servers, 
so  when  I  hear  that  they  are  getting  into 
voice  over  IP,  I  feel  confident  that  they  can 
maintain  my  equipment,”  he  says. 

However,  lack  of  availability  of  spare  parts 
can  increase  downtime,  as  Olson  knows  all 
too  well.  After  a  CPU  on  an  IBM  RS6000  run¬ 
ning  payroll  went  down  and  failed  over  to 
the  backup  CPU,  he  was  stuck  waiting 
while  IBM  flew  the  part  in  overnight. 
Human  resources  had  to  put  off  noncritical 
transactions  until  the  faulty  CPU  was 
replaced. 

Rich  Glasberg,  director  of  data  communi¬ 
cations  for  the  commonwealth  of  Mass¬ 
achusetts  in  Boston, agrees  that  it’s  useful  to 
keep  spare  components.  However,  he  says 
some  gear  requires  ongoing  software  main¬ 


tenance,  and  maintaining  a  pool  of  spares 
is  costly  A  spare  router  may  need  a  software 
upgrade  after  six  months. 

What’s  more,  Glasberg  says  keeping  a  lot 
of  spare  gear  hanging  around  could  be 
dangerous  because  technology  changes 
quickly  “You  can  find  yourself  with  older 
technology  sitting  in  your  bunker.  When  it 
comes  to  upgrading  to  new  technology, 
you’ve  got  technology  that  you  can’t  get 
much  money  for^  he  says. 

Knowing  your  component  failure  rate 
helps  you  estimate  your  availability  risk 
and  justify  the  cost  of  the  storing  of  spares 
on-site  vs.  contracting  with  your  vendor  to 
store  equipment  at  certain  revision  levels 
in  its  inventory  Glasberg  says. 

But  mean  time-to-failure  data  is  hard  to 
estimate,  Olson  says.  Hardware  mainte¬ 
nance  vendors  have  reliability  figures 
they’ve  collected,  but  they  don’t  often  share 
these  figures. 

“The  mean  time  to  failure  might  be 
eight  years  by  design,”  Olson  says.  “But  I 
want  to  know, ‘What  has  your  experience 
been  with  these  parts  failing?’"  He  plans 
to  ask  that  question  in  his  next  contract 
negotiation.  ■ 


Server  Management 


CONTROL  IT 

SECURE  IT 

MANAGE  IT 

FROM  ANYWHERE 

ROSE  ELECTRONICS  KVM  switches  allow  single 
or  multiple  workstations  to  have  local  or  remote 
access  to  multiple  computers  located  in  server 
rooms  or  on  the  desktop. 

ROSE  is  a  leading  KVM  switch  manufacturer  with 
the  most  complete  range  of  server  management 
products.  A  KVM  industry  pioneer,  Rose  is  known  for 
its  technically  superior  and  price  competitive 
products. 

From  simple  access  to  complex  configurations, 

Rose  provides  easy  server  management  solutions. 

Call  ROSE  today. 


KVM  SWITCHES 


KVM  EXTENDERS 


KVM  ACCESSORIES 


LOW  COST  SINGLE  USER 


$  ...  KVM  RACK  DRAWER 


Low  cost  single-user  KVM  switch 
Supports  up  to  64  computers 


RackView™ 

Rack  mounted  1U  or  2U  KVM  drawer 
with  optional  KVM  switch 


PROFESSIONAL  SINGLE  USER 
UltraView  Pro™ 

Professional  single-user  KVM  switch 
Supports  up  to  256  computers 


MULTI-USER  FIXED  CHASSIS 

UltraMatrix™  E-series 
Professional  multi-user  KVM  switch 
2-4  KVM  stations  to  1,000  computers 

1m. 


MULTI-USER  EXPANDABLE  CHASSIS 

UltraMatrix™  X-series 

Enterprise  class  multi-user  KVM  switch 

4  -  250  KVM  stations  to  1,000  computers 


ROSE  ELECTRONICS 
10707  Stancliff  Rd. 
Houston,  Texas  77099 


UltraLink™ 

KVM  digital  remote  access 
over  Ethernet  or  modem 

■  Connect  to  remote  computer  over  Ethernet  or  dial-up 

■  Local  KVM  port  to  access  computers  at  UltraLink 
unit 

■  Modem  port  with  dial-back  security 

■  Up  to  1280x1024  resolution,  supports  all  platforms 

■  Easy  to  install,  give  it  an  IP  address  and  run  the 
remote  client,  no  licensing  required 

■  Scaling  of  computer  image  reduces  amount  of  data 
sent  and  permits  fast  screen  updates  over  slow  links 

■  Quad  screen  mode  allows  you  to  see  four  servers 
from  one  screen 

■  SSL  security  and  passwords  prevents  unauthorized 
access 


333-9343  281-933-7673 


Multistation™ 

Up  to  four  KVMs  to  one  computer 
Fully  automatic  KVM  sharing 


VIDEO  DISTRIBUTION 


One  or  two  computers 
to  multiple  monitors 


CONVERTER 

Translator™ 

Keyboard  mouse  converter  for  Sun, 

Apple,  DEC  Alpha,  or  SGI  Onyx  KVM  converters 


vilROSE 

xT^electronics 


CANADA  .  ENGLAND  .  GERMANY  .  FRANCE  .  BENELUX  .  AUSTRALIA  .  SINGAPORE 


WWW.  ROSE 
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KEYNOTE  performance  chart 


Actual  client  data,  12:00  PM  January  11  - 12:00  PM  January  12,  2002 


Redline  Networks'' 


Web  site  acceleration  deployed  in  under  an  hour. 


Faster  Performance 

T|X  optimizes  and  compresses  out¬ 
bound  data  in  real-time,  accelerating 
server  response  time  and  user 
downloads. 

Maximize  Server  Capacity 

T|X  eliminates  the  I/O  inefficiencies  of 
content  servers,  drastically  expanding 
their  load  carrying  capabilities. 

Reduce  Costs 

Besides  eliminating  servers,  rack  space, 
management  and  licensing  costs,  T|X’s 
real-time  compression  typically  cuts 
bandwidth  use  by  50%. 


We  all  know  it’s  true  —  the  Internet  isn’t 
fast  enough  and  faster  downloads  are 
always  better.  Now,  sites  can  accelerate 
downloads  of  static  and  dynamic  content 
to  all  of  their  users  by  deploying  Redline 
Networks’  T|X  acceleration  appliance  in 
their  data  center.  It’s  that  easy.  It  takes  less 
than  an  hour,  it  makes  your  whole  site 
faster,  and  it  cuts  your  bandwidth  bill  too. 


Reduce  Bandwidth  Needs  by  50%  •  Deploy  in  About  an  Hour 


www.RedlineNetworks.com  For  more  information:  1  877.550.6420 


better  Performance  is  Better  Business. 


There  Is  A  Better  Way  To  Troubleshoot  &  Manage  Your  Network 


OBSERVER 


IIJIll 


OBSERVER 


OBSERVER 

S  U  I  T  E 


Quickly  Pinpoint,  Pre-solve  & 
Prevent  Network  Problems 


Expert 

Observer 

*2895 


Observer 

Suite 

£3995 


Observer® — Quickly  identifies  network 
trouble  spots  and  costs  thousands  less  than 
expensive  hardware-based  analyzers. 
Observer  provides  metrics,  capture,  and 
trending  for  both  shared  and  switched 
environments. 

•  Full  packet  capture  and  decode  for  over 
500  protocols,  including  TCP/IP  (v4  &  v6), 
NetBIOS/NetBEUI,  XolP,  SNA,  SQL,  IPX/SPX, 
Appletalk  and  many,  many  more! 

•  Switched  mode  sees  all  ports  on  a  switch 
gathering  statistics  from  an  entire  switch  or 
capture/statistics  from  any  port(s) 

•  Long-term  network  trending  collects 
statistical  data  for  days,  weeks,  months, 
even  years 

•  Real-time  statistics  include  Top  Talkers, 
Bandwidth,  Protocol  Statistics,  and 
Efficiency  History 

•  Ethernet  (10/100/Gigabit),  Token  Ring, 
FDDI,  and  Wireless  802. 1 1 — no  need  to 
purchase  separate  tools 


•  Windows ®  98/Me/NT/2000/XP  compatible 

•  Over  4,000  frame  types  recognized 

Expert  Observer — Identifies  problems  and 
provides  Expert  information  in  plain  English. 

Includes  all  of  the  features  of  Observer  plus 
real-time  and  post-capture  expert  event 
identification  and  analysis — new  SQL  and 
Frame  Relay  experts  add  to  the  many  other 
protocols  covered,  time  synchronization 
technology,  and  modeling  of  network  traffic. 

Observer  Suite — The  ultimate  tool  for 
the  most  demanding  power  user. 

Provides  a  full  complement  of  tools  that 
includes  all  of  the  features  of  Expert 
Observer  plus  SNMP  management,  RMON 
console/Probe  and  Web  reporting.  Includes 
one  remote  Probe. 

If  you  have  any  network  problems,  find 
out  the  cause  with  Observer,  Expert 
Observer,  or  Observer  Suite. 


Call  800-526-7919  or  visit  us  online  lor  a  full-featured  evaluation: 

www.NETWORKINSTRUMENTS.com 

US  (952)  932-9899  •  Fax  (952)  932-9545  •  UK  &  Europe  *44  (0)  1959  569880  •  Fax  >44  (0)  1959  569881 
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So  Much  More 

require  and  provides  you  with  the  accessories  and 
management  tools  to  maintain  that  level  of  availability 
over  time.  Our  expert  Configure-to-OrderTeam  can 
custom  tailor  a  complete  rack-mount  solution  to  suit 
your  specific  requirements.  Contact  APC  today  and 
protect  your  rack  application  with  Legendary  Reliability'”. 


ProtectNet® 


Data  line  surge  suppressors  for  comprehensive  network/PC  system  protection 

•  Protects  against  surges  and  electrostatic  discharge  traveling  through  data  lines 


LCD  Monitors 


High  quality  rack-mount  LCD  monitors  designed  to  maximize 
space  in  a  data  center  environment 

•  Provides  optimal  functionality  while  utilizing  only  1U  (1.75")  of  rack  space 

•  Includes  15"  LCD  monitor,  integrated  keyboard  and  integrated  pointing  device 


Cables 


APC  offers  a  comprehensive  line  of  cables  and  connectivity  solutions  to 
fulfill  the  connectivity  requirements  of  any  application  or  environment 


■■■■■■■I 
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Configure  your  racks  with  APC.  Simply  visit  promo.apc.com  today! 


APC:  UPSs  and 

APC,  the  name  you  trust  for  power  protection,  also 
offers  a  comprehensive  line  of  non-proprietary  racks, 
rack  accessories  and  management  tools  that  provide 
you  with  the  flexibility  to  implement  a  highly  available, 
multi-vendor  environment.  APC  allows  you  to  create 
a  rack  environment  with  the  level  of  availability  you 


Air  Distribution  Unit 


A  unique  2U  rack-mounted  fan  tray  unit  that  connects  into  raised 
floors  and  pulls  conditioned  air  directly  into  the  enclosure 

•  Dual  fans  provide  increased  air  flow  to  cool  densely  packed  equipment 

•  Improves  air  delivery  in  poor  static  pressure  areas 

•  Enhances  air  quality  to  rack  equipment  by  providing  30%  efficient  filtration 

•  Adjustable  depth  fits  most  leading  enclosures 


NetShelter®  VX  Enclosures 


Next  generation,  high-quality  enclosures 

•  Fully  ventilated  front  and  rear  doors  with  enhanced  ventilation  pattern  maximize  airflow 

•  Overhead,  base  and  side  cable  access  provide  easy,  integrated  cable  management 

•  Rear  Cabling  Channel  (42"-deep  versions  only)  allows  for  easy  installation, 
access  and  serviceability  of  both  data  cables  and  power  distribution 

•  Available  in  multiple  configurations:  35.5"-deep,  42"-deep,  beige  or  black 


KVM  Switches _ 

Server  switches  designed  to  increase  system  availability  and  manageability 

•  4  and  8  port  models  available:  expandable  to  support  up  to  64  servers 

•  Models  available  that  support  Sun,  USB  and  PC  servers  simultaneously 

•  Built-in  scanning  feature  allows  you  to  automatically  monitor  your 
computers  without  intervention 

•  On  Screen  Display  (OSD)  functionality,  advanced  security  features 


NetShelter®  Open  Frame  Racks _ ^ 

Economical  open  frame  solutions  for  wiring  closets  and  data  center 
networking  applications 

•  Designed  to  accommodate  networking  devices  such  as  hubs,  routers  and  switches 

•  Industry  standard  7-high  design  provides  45U  of  equipment  mounting  space 

•  Self-squaring  design  allows  one-person  assembly 

•  Made  of  high-strength  6061 -T6,  structural-grade  aluminum 


MasterSwitch"  Series 


Remote  power  distribution  for  network  administrators 

•  Users  can  configure  the  sequence  in  which  power  is 
provided  to  individual  receptacles  upon  start-up 

•  Built-in  Ethernet  interface  for  direct  connection  to  LAN 

•  Individually  control  8  on-board  power  outlets  for 
complete  and  flexible  management  of  attached  equipment 


APC  MasterSwitch “  VM 
shown  mounted  inside  a 
NetShelter  VX 


Look  for  these  other  great 
rack  accessories  from  APC: 


Fixed  and  Sliding  Shelves 
Cable  Management  Shelves 
Fans 

Keyboards/Keyboard  Drawers 
Stabilization  Kits 
Power  Distribution  Units 


Visit  www.apc.com 
for  more  information! 


Key  Code  e522y  •  Call  888-289-APCC  x6382  •  Fax  401  -788-2797 


Legendary  Reliability' 
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Access  Your  Network  Equipment  from  Anywhere 


Telnet  and  Dial-Up  Console/AUX  Port  Switch 

Cost  Effective  Terminal  Server  Alternative 


lOBase-T  Ethernet  Interface 


AC  or -48V  DC  Power 


19”  Rack  Mounted 


p*  [ 
RS232  Ports 


C Console  Management  Switch  (CMS) ) 


•  8, 16  or  32  RS232  DB-9  Serial  Ports 

•  Simultaneous  Telnet  Sessions 

•  Non-Connect  Port  Buffering  -  32K 

•  IP  Security  Features 

•  Modem  Auto-Setup  Command 
Strings  (User  Definable) 

•  NEBS  3  Approved 


UNIX  SUN  LINUX 

CONSOLE  CONSOLE  CONSOLE 

wmm  ^  lapm 


ROUTER  DSU/CSU 

CONSOLE  CONSOLE 


REMOTE  ACMINlSnWDR 


LOCAL  TERMINAL 


Telnet  and  Dial-Up  Network  Power  Switch 

Reboot  Locked-up  Equipment 


Individually  Controlled  Outlet  Plugs  (8) 


lOBase-T  Ethernet 
Interface 


19”  Rack  Brackets 
Allow  Front,  Back, 
or  Center  Mounting 


Dual  15  Amp 
Power  Circuits 


Modem  Port  for 
Out-of-Band  Management 


Local  RS232  Console  Port 


(  Network  Power  Switch  (NPS) ) 


•  8  Individual  Outlets 

•  On/Off/Reboot  Switching 

•  Integral  lOBase-T  Interface 

•  Co-Location  Features 


umifea 


www.wti.com 


Outlet-Specific  Password  Security 
Network  Security  Features 
11 5-VAC  (230-VAC  available) 
Power-Up  Sequencing 


(800)  854-7226 


western  telematic  incorporated 

5  Sterling  •  Irvine  •  California  •  92618-2517 


See  us  at  Networld+lnterop,  Booth  #8526 


Keeping  the  Net.. .Working! 


Try  SharkRacks™.  Our  rack-mount  units  will 
safely  house  virtually  any  19”  EIA  standard  unit. 
Have  Suns?  No  problem.  What  about  Cisco  gear, 
or  Compaq,  or  HP  servers?  Sure.  We  can  rack 
that.  With  SharkRack  you  get  a  great  looking 
cabinet.  Our  space  savings  and  cabling  features 
will  organize  your  systems.  Most  importantly,  with 
our  NetBotz  unit  watching  over  your  systems, 
you’ll  always  know  what’s  going  on.  Call  us  today 
or  log  on  for  more  details  to  see  how  we  can  help 
you  save  space,  keep  cool,  and  look  good. 


vSHABK  877-427-5722 
JirAvK  www.sharkrack.com 


Wondering  How  To  Get  More 
Out  Of  Your  Data  Center? 
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SharkRack™ 
Systems  are  the 
leading  racking 
solution  for  multi¬ 
vendor  configura¬ 
tions.  We  rack 
Sun™,  Cisco™, 
Compaq™,  HP™ 
and  almost  any 
19”  EIA  standard 
unit.  Our  current 
Sun™  rack-mount 
kits  include: 

•  SunFire™  3800- 
4800  series 
servers 

•  E3500,  E4500 

•  A5000 

•  T-3 

•  Many  more, 
see  web  site 
for  details 


The  SharkRack  LCD  monitor  and 
keyboard  has  TFT  quality  video 
imaging  on  a  sliding  tray  that  is 
only  1.75”  high. 


*  Borz 


hmnzu  - 

o 


The  NetBotz™  RackBotz  unit 
installs  in  a  cabinet  and  monitors 
internal  conditions.  If  a  problem 
occurs,  it  will  send  out  an  alert  by 
email,  pager,  or  other  device. 


0*  Sharkflacfc,  tnc"  AH  nphts  reserved  NetBotz  is  a  trademark  ot  RackBotz  Inc  HP  is  a  trademark  ot  Hewlett  Packard  Inc  Compaq  is 
of  Sun  Microsystems.  Inc ,  Cisco  is  a  trademark  ot  Cisco  Systems  Inc  All  othei  trademarks  are  the  property  ot  their  respective  holders 
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PowerTower 


How  do  you  reboot  l6 
equipment  units... 


using  z.en 

of  rack  space? 


9  Sdltry  POWER  TOWER  :  Your  Zero  U  Reboot  Sotution 


16  remotely  addressable  power  outlets  — 
The  hlfhest  density  available  of  any 
Remote  Power  Management  vertical  strip. 
30-amp  power  input  feed  distributed 
across  16  outlets. 

Mounts  vertically  In  your  equipment  rack  or 
cabinet  and  requires  Zero  U  of  rack  space. 
Load  Sense  provides  real-time  current 
monitoring  In  the  remote  screen  interface 
and  through  e  built-in  LED  display  tor  on¬ 
site  measurement. 

Power-up  sequencing  of  all  16  outlets 
prevents  an  In-nish  current  overtoad. 


Telnet,  SNMP.  Modem  or  RS-232  Interfaces  for  easy, 
practical  and  secure  power  management  of  remote 
Internetworking  equipment 


Install  the  new  Sentry  Power  Tower  in 
your  data  center,  NOC  or  co-lo  facility 
and  gain  the  advantage  of  remotely 
rebooting  up  to  16  of  your  equipment 
units  -  without  occupying  any  space  in 
your  rack  or  enclosed  cabinet 


Try  the  New  Sentry  Power  Tower  In  your 
rack  or  cabinet  and  realize  the  benefits 
of  Intelligent  Power  Distribution  and 
Remote  Power  Management 


See  our  complete  product  tine  at  wwwjervertech.com 
or  call  S00435.1515  or  775.aB4.aooo 


Another  great  product  from 

•  '  ,  -  • 

Server  Technology,  Inc 

l_  *  ■  -■  j  -  -  -  *  r\ .  .  .  .  r —  —  i  .  -  . 

16  a  uTKMTvanc  ot  server  lecnrrotogy,  inc. 

SENSAPHONE" 

IMS 


Sends 

SNMP 

Messages 


Monitors 

64 

IP  addresses 


Embedded 

Web 

Server 


Sends 

E-Mail 


Power 

Outage 

Alarming 


Internal 

UPS 


Internal  Voice, 
Power  Ethernet  Modem 
Control  Port  &  Pager  Port 
Interface 


8  R|-45  Sensor  Inputs 

( Temperature ,  Humidity, 
Wofer,  Motion,  Power, 
Smoke/Fire) 


Microphone 

lor  Sound 
Monitoring 


BE  NOTIFIED  BEFORE  CRITICAL  EVENTS  TURN  INTO  DISASTER! 


•  Eight  environment  inputs 

•  Power  sensing 

•  Monitors  64  IP  addresses 

•  Send  alerts  to  64  people 

•  8  methods  of  contact 

•  Calendar  scheduling 

•  Expands  to  256  sensors 

•  Remote  power  control 

•  Optional  camera 


The  Sensaphone  IMS-4000  Infrastructure 
Monitoring  System  monitors  critical  environ¬ 
mental  and  network  elements  in  your  server 
room,  data  center,  or  telecomm  installation  and 
reports  to  you  instantly  when  events  threaten 
your  infrastructure.  The  IMS-4000  keeps  watch 
so  you  don't  have  to.  See  these  features  and 
more  on  the  web  at  www.ims-4000.com 


Phonetics,  Inc. 

Tel:  877-373-2700 

901  Tryens  Road 

www.ims-4000.com 

Aston,  PA  19014 

Guess  what  Yahoo!  uses 
to  manage  their  servers- 

\J 


"The  Cydades-TS  Series  of  Console  Access  Servers  provides  the  highest  port  density 
and  security  at  a  very  competitive  price.  By  using  Linux  as  the  embedded  OS,  it 


ry  ■ 

offers  the  flexibility  required  to  manage  our  dynamic  environment. 

yy,  y  \ * 

The  Cydades-TS  is  a  key  element  to  help  us  keep  our  servers  up  and  running." 

-  Pete  Kumler,  Manager  of  Site  Operations,  Yahoo!  Inc. 

Cyclades-TS  Series  Console  Access  Server 

•  1/4/8/16/32/48  RS-232  ports  on  1U  of  rack  space 

•  First  Linux-based  Terminal  Server  in  the  market 

•  IP  Filtering,  RADIUS,  and  Secure  Shell  (SSHv2) 

•  Linux,  FreeBSD,  Sun,  HP,  and  IBM  compatible 

•  No  unintentional  breaks  (Sun)  rvi  L,NUX 

k  Sol  ARb  J  |^kl|^|; 

•  Off-line  data  buffering  kami  inside 


FREE  CAS  booklet  at  www.cyclades.co 
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The  Leader  in 
LINUX 

Connectivity 


www.cyclades.com 


1-888-CYCLADES  1-888-292-5233 
510-770-9727 
sales@cyclades.com 
Fremont,  CA 


CYCIADES 
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The  Hub  of  the  Network  Buy 


Internet 


ICSA  Certified 

GNA  Box 
System  Software 

Features  include: 

•  High  Performance 

•  Built-in  IPsec  VPN 

•  Stateful  Packet  Inspection 

•  Dynamic  &  Static  NAT 

•  PPP  and  PPPoE  Support 

•  DHCP  Services 

•  DNS  Server 

•  Mobile  VPN  Client  Support 


•  Secure  Remote  Management 

• 


•  Email  Proxy 
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Sales:  (800)  775-4GJA 
Tel:  (407)  380-0220 
Email:  info@gta.com 
'  Web:  httpWwww.gta.com 


Security 


Firewall  Appliances 


RoBoX  Firewall 

Remote  office/branch  office  versatile  firewall 
appliance  for  offices  with  fewer  users. 


GB-1000  Firewall/VPN  Appliance 

High  performance,  firewall  with  unlimited  user 
license,  IPSec  VPN  and  High  Availably  feature. 


Firewall  Software  Systems 

GB-  Flash 


All  the  power  and  functionality  of  the  GB-1000  on  an  easy  to 
install,  solid-state  flash  memory  module. 
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GNAT  Box  Pro 

Simple,  powerful,  high  value  firewall  that  runs  and  boots  from  a 
floppy  diskette  on  a  486  CPU  (or  higher)  and  1 6MB  of  RAM 


Global  Technology  Associates,  Inc. 

Firewall  developers  since  1994 


Great  Room  Service. 
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Evans  brings  together  the  finest  in  control  center 
design  services,  consoles,  audiovisual  solutions  and 
specialty  products  to  guarantee  a  complete,  integrated 
and  customer-focused  solution. 


■  • .  V  : 


With  over  4,500  successful  projects,  Evans  is  the  world¬ 
wide  leader  in  control  centers. 


•-»  ’’V  "V  -  . 


phone:  (403)  291-4444  web:  www.evansonline.com 
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FIRST. 


fax:  (403)  250-6549 


email  info@evansonline.com 


WHAT  DO... 


0  Princeton  University 

^  The  US  Treasury  Department 

•  • 

f  i 

£  The  Democratic  National  Committee 

■  H-., 

9  /  ’ 

£  The  UCLA  Medical  Center 

have  in  common? 


They  all  chose  FA5TLINKS  to  handle 
their  needs  for  wireless  WAN  connectivity. 


Call  FASTLINKS  today 
and  see  what  sets  them  apart 
from  others  in  the  field  of 
wireless  integration. 

JF  Jg  O  I  III  gJT  C  www.wirelesswans.com 

r/40  f  LIN  rYO  (877)  877-0176  toll  free 


Authorized  Reseller 
Buy  Sell  Lease  Repair 

New  Refurbished  Used 
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Routers 

Switches 

Hubs 


Nortel 

Memory 

ISDN 


DSU/CSUs 

3Com 


1  877  231  2451 


www.wdpi.com 

Email:  cisco6@wdpi.com 


Cisco  Stste hs 


RMONS  PROBE 


Complete,  Industry  Standard,  Software-Based  RM0N2  and 
RM0N1  Probe  for  Windows  98/Me/NT/2000/XP 


1*^,  Network  Instruments  RMON  Probe 
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Fie  Options  Help 
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•  Low  cost,  complete  RMON  monitoring  for  remote  sites  or 
segments. 

•  Software-only,  non-dedicated  data  collection. 

•  Pure,  full  RMON  1  and  2  support.  Complete  implementation  of 
both  RMON  1  and  2  for  Ethernet  (10/100)  and  Token  Ring  (4/16). 

Full  adherence  toRFCs  1513,  1757,  2021  and  2074. 

•  Runs  as  a  service  on  Windows  NT/2000/XP. 

•  Works  with  ANY  RMON  management  console  or  collection  facility 
(Observer OpenView  ,  Concord  \  NetScout etc.). 

•  Compatible  with  Network  Instruments'  optimized  ErrorTrack"  NDIS 
drivers  display  true  errors-by-station. 

•  Multiple  concurrent  network  interface  monitoring  (up  to  10). 

Why  pay  thousands  more  for  the  same  data? 

Call  800-526-7919  for  information,  or  see  our  web  site  at: 

www.networkinstruments.com 

©  2001  Network  Instruments,  LLC  -  Corporate  Headquarters  (952)  932-9899  FAX  (952)  932-9545 
UK  and  Europe  +44  (0)  1959  569880  FAX  +44  (0)  1959  569881  info@networkinstruments.com  www.networkinstruments.com 
Network  Instruments  and  the  'N'  logo  are  registered  trademarks  of  Network  Instruments,  LLC  Minneapolis.  MN  USA 
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Provide  4  or  8  V.90/V.34  data  and  rax  modems 
in  one  easily-installed  easily-configured  adapter. 


SST-MM8P  PCI 


•4  or  8-port  adapters 
•Scalable  to  32  ports  per  server 
■Lowest  CPU  utilization 
•Installs  in  minutes 
•Requires  no  interrupts 

Equinox  Multi-modem  Adapters  provide 
up  to  44%  savings  over  the  leading 
competitors  of  similar  products. 

Call  1-800-275-3500,  ext.  615 
for  a  FREE  30-day  evaluation! 
or  Email:  sales@equinox.com 


Fax  server 
Dial  access 
Data  collection 
Modem  pooling 
Internet  access 


For  more  infomation  on  Equinox  products  visit  our  website  at  -  www.equinox.cciT; 
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\  Boson  Training 

j  (813)  925-0700 
www.bosontraining.com 
CCIE,  CCNP,  CSS1,  CCNA,  Cisco, 
wireless,  CISSP 


PMG  NetAnaiyst 

(800)  645-8486 
www.NetworkTraining.com 
Network  Forensic  .Analysis  and 
I  Security  Training  and  Services 
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i  Learnkey  Inc. 

I  (800)  865-0165 
ww.leamkey.com 
Self-paced  online  CD  network 
certification  developer  bus/apps 

•  -  _i 

|  NETg 

(800)  828-2050 
www.wavetech.com 
IT  Certification  Boot  Camps  with 
1  Guaranteed  Success 


To  Place  Your  Listing  Here 
Call  Enku  Gubaie  at  1-800-622-1108 
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Contact  these  companies  today  to  help  you  with  your  training  needs! 


Get  More  for  Today's  Budget! 


Contact  BIZI 
to  SAVE  up  to  80% 


.-“j 


•  50-80%  Savings  off  Retail  List  Prices 

•  120-Day  Warranty 

•  100%  30  Day-Money  Back  Guarantee 

•  Large  Inventory,  Same  day  Shipping 

•  Supplying  Quality  Networking  Products 
for  Over  10  Years  with  In-House  Technical  Support 

Request  a  Quote  on-line  at: 

http://www.bizint.com  or  info@bizint.com 

(877)  438-2494 

or  (315)  458-9606  fax:  (315)  458-9493 
We  Buy,  Sell,  Trade  and  Lease... 


Your  global  partners  in  new  &  quality 
pre-owned  networking  equipment 


CISCO,  BAY/NORTEL,  3COM,  CABLETRON,  EXTREME,  FOUNDRY,  JUNIPER 


NORTEL  NETWORKS 


Why  Are  We  The  Best? 


•  Nortel  Service  Contracts  •  Free  Technical  Support 

•  Nortel  Service  Renewals  •  Next-Day  Hardware 

Replacement 

•  Good  As  New  Gear, 

Same  as  New  Warranty 
-  at  Better  Than  New  Prices 

|  Refurbished  Specials: 

|  ASN/2-32mb  Refurbished  Advanced  Stack  Node  Bundle 

i  indudes  AH0002E1J-J2mb  Redundant  Base  Unit 

1  !j  34000  Dual  Ethernet  lx  AF21 1 1005  Quad  Sync 
!  u,  vtnoi  1004  Fast  Packet  Cache,  lx  AF2104013  128  bit  Compression  Module 

Special  $2,995 

i  Haystack  JS0T-H0  (AU012H0)  24  Port  10/100  switch 

1  K>  <  l  i  Ur  V-0  (i  ades  may  vary.  "A"  Grade  sate  price  $350.00 

1  Oie  Year  W  Treaty 

As  Low  As  $150 

J  Bays  Sac*  *34-241  (AL2012U4)  24  Port  10/100  Stackable 

Special  $895 

j  Backbone  Router  Sped*l-ACl004O0S 

JRefurt,  Li  alludes  Dual  I0WI  with  the  Fast  FRE2-060-64mb 

Special  $3,249 

Oo»r  v/o  used  ’  Try  our  low  prices  on  new!  Call  Today! 


(888-852-6926) 


Nahonol  LAN  Exchange  »  WWW.nle.com 


The  Hub  of  the  Hetwork  Buy 
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Products 

purchased  as 
a  result  of 
Marketplace 

ads. 


\/  Hubs 

t/  Routers 

\/  Software 
training 


✓  Memory- 
products 


i/  Ethernet 
Cards 


/  Netware 
products 

i/  Modems 


✓  Testing 
equipment 

/  Multiplexers 


Systems/Features/Memory 


Also  Available:  Wellfleet,  Bay,  Fore, 
Xylogics,  Livingston,  &  Ascend 

in  Stock  •  Fast  Delivery  •  No  Expedite  Charges 


COMSTAR,  INC. 

The  #1  Network  Remarketer 

952*835*5502 

Fax  952*835*1927  E-Mail:sales@comstarinc  com 


FIBER  OPTIC 
SOLUTIONS 


•  T1/E1  &  T3/E3  Modems 

•  RS-232/422/485  Modems  and 
Multiplexers 

•  IBM  3270  Coax,  AS/400  Twinax,  and 
RS/6000  Modems  and  Multiplexers 

•  LAN  -  Arcnet/Ethernet/Token  Ring 

•  Video/Audio/Hubs/Repeaters 

•  ISO  -  9001 

s.i.TECH 

Toll  Free  866-SITech-1 
630-761-3640,  fax  630-761-3644 

www.sitech-bitdriver.com 


*  Cisto  Systems  ■  Extreme  Networks 
■  Juniper  Networks  ■  Foundry  Networks 

www.  digitalwarehouse,  com 

digital  wamhousb 

Your  Information  Superhighway  Discount  Source & 

#T73 
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Nortel  Networks 
Lucent  Technology 
Alcatel 

Riverstone  Networks 


For  more  information  on 
advertising  in  the  Marketplace, 
STOP  everything,  and  call  now! 
800-622-1108  ext. 6 4 65 


•  COBAir 


technologies,  inc 


WWW.RECURRENT.COM  INFO 
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We 


Sell 


CISCO 


New  &  Used 

■ 

Fully  Guaranteed 

■  ■  ■ 

Overnight  Delivery 

800.451.3407 


90  Castilian  Drive,  Suite  110,  Santa  Barbara.  CA  93117 


Routers 
Switches 
Interface  Modules 
Access  Servers 
Accessories 


www.  network  ha  rdware.com 

BUY  ONLINE 


NETWORK  HARDWARE  RESALE » 


to 


careers.com 


IT  CAREERS 


ffi  careers  $$ 
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Programmer  Analyst,  must  have 
Bachelors  in  Science  or  Engi¬ 
neering  &  2  yearsOf  experience 
in  designing  and  developing  net 
enabled  applications  usingjava, 
HTML,  Cold  Fusion.  Java  Script, 
CFML,  ATG  Dynamo  for  c/s; 
design  and  develop  applications 
using  Viasoft,  Star  Tool  for  main¬ 
frame  environment;design  and 
develop  RDBMS  using  Oracle, 
DB2,  JDBC,  etc  Respond  to  HR 
Manager,  Anthem  Technologies, 
Inc.,  77  West  Elm  Wood  Drive, 
Suite  1 13,Dayton,  OH  45459. 

Software  Engineer  (St.  Louis. 
MO,  multiple  positions):  Design, 
develop,  modify,  implement  and 
maintain  computer  software 
systems  in  Windows  and  Unix 
environment  utilizing  object  ori¬ 
ented  programming  techniques, 
C/C++,  Java,  Visual  Basic,  Oracle. 
SQL,  PL/SQL,  and  GUI  tools 
Require  MS  in  Comp.  Sci., 
Math  ,  Engr.  or  in  a  related  field 
(or  B.S.  in  the  same  field  with 
minimum  5  years  progressive 
experience  in  offered  or  similar 
positions.)  Competitive  salary; 
40hr./wk.;  Mon-Fri.,  8:00  a.m.- 
5:00  p.m.  Resume  to:  Mr.  K. 
Jasti,  Global  Software  Solutions, 
Inc.,  1001  Craig  Road.,  Suite 
330,  St.  Louis,  MO  63146.  No 
call/EOE 

Programmer  Analysts/Network 
Engineers/Software  Engineers 
(all  multiple  positions)  sought  by 
computer  s/w  consultancy  firm  in 
Yardley,  PA.  Must  have  Bach  in 
Comp  Sci.,  Engg  or  equiv  and 
one  yr  relevant  exp.  Respond 
to:  HR  Dept.,  Global  Systems 
Technologies.  Inc.,  109  Floral 
Vale  Blvd.,  Yardley.  PA  19067. 

Computer/Info  Systems 

Coral  Technology  Corporation,  a 
Software  Design  and  Consulting 
firm  seeks  to  fill  the  following 
position  in  Streamwood,  Illinois, 
and  unanticipated  locations  in 

the  US; 

Programmer  Analyst,  Must  have 
BS  &  2  yrs  software  development 
experience. 

Respond  by  resume  to  Coral 
Technology  Corp.,  Michael 
Deluca,  37  W.  Briarwood  Drive, 

Streamwood,  IL  60107. 

Sagarsoft,  Inc  is  seeking  individ¬ 
uals  to  work  at  various  locations 
throughout  the  U.S.  Seeking: 
Software  Engineers,  Programmer 
Analyst,  Quality  Assurance 
Engineers,  DBA's  and  Systems 
Administrator.  Reqs:  B.S.  plus 
experience.  Senior  Software 
Engineers.  Senior  Programmer 
Analyst.  Req:  M.S.  plus  experi¬ 
ence  or  B.S.  plus  5  years  experi¬ 
ence.  We  are  seeking  applicants 
with  the  following  skills:  Sybase. 
Oracle,  C++,  VC++,  Pro  *C, 
FoxPro,  SAS,  business  objects 
among  others.  Apply  to: 
Sagarsoft,  Inc.  78  Eastern  Blvd., 
Glastonbury,  CT  06033 

Ld.  Programmer/Analyst  wanted 
by  recruitment  org.  in  Melville, 
NY.  Reqd  B.E.  or  equiv  +  3  yrs 
exp  incl.  Oracle,  SQL,  Power¬ 
Builder.  Fax  resume  to  M.  Storelli 
at  (631)  844-7426. 

Softline  Systems  is  seeking 

qualified  Programmer  Analysts, 

Systems  Analysts,  DBAs,  and 

Software  Engineers  for  various 

positions  to  work  at  client  sites 

throughout  the  US.  Applicants 

must  have  a  B.S.  in  Computer 

Science  and  1  yr  relevant  expe¬ 
rience.  Send  resume  to:  Softline 

System,  Attn:  Human  Resources, 

690  Canton  St,  Suite  290, 

Westwood,  MA  02090. 

Technical  Support  Specialist.  8a- 
5p.  40  hrs/wk.  Analyze  project; 
assign  &  coord  work  schedules; 
review,  test  prgm  for  compatibility; 
troubleshoot  &  provide  tech  sup¬ 
port/updates  using  Oracle,  VB, 
JavaScript,  XML,  Perl,  Shell, 
HTML,  C.C++,  UNIX  &  Win  NT. 
Reqmt:  Bach  or  equiv  in  Comp 
Sci/Engg;  Electrical,  Electronics 
or  related  Engg;  Info  Technology, 
Commerce  or  Bus  Admin/Mgmt. 

2  yr  exp  in  job  offd  or  as  Project 
Dvlpmt  Coordinator  or  Resource 
Mgr.  Resume  to:  Concept 
Software  &  Services,  Inc.,  7094 
Peachtree  Indus  Blvd,  #201, 
Norcross,  GA  30071. 

Computer  Programmer,  Bklyn,  NY 
-  Develop  &  write  programs  to 
store,  locate  &  retrieve  documents, 
data  &  information  for  retail  & 
wholesale  clothing  company. 
Plan  layout  of  new  &  modify 
existing  system,  using  standard 
programming  languages  (dBase, 
COBOL  &  Turbo  C), network 
systems  (LAN/WAN)  &  routers 
(Cisco).  Bachelors  w/computer 
specialization  or  equivalent. 2yrs 
of  related  computer  exp  req'd. 
Send  CV:  4609  1st  Av,  Bklyn, 
NY  11232,  att:  Albert  Nigri.  Fax 
718-369-7410. 

ASSOCIATE  APPLICATIONS 
DEVELOPER  -  40  Hours  Per 
Week,  9:00  a  m.  -  5:00  p.m., 
$39,420  per  year,  Located  in 
Miami  Floirda.  Requires  Bache¬ 
lor's  Degree  in  Management 
Information  Systems-As  part  of 
the  project  team  environment 
will  support  development  and 
implementation  activity  for  medium 
to  complex  Client  Server  appli¬ 
cations.  Will  use  and  adhere  to  a 
Software  Development  Life  Cycle 
process.  Must  have  a  strong 
working  knowledge  of  one  or  more 
of  the  following:  WINDOWS  API, 
Visual  Basic,  Familiarity  with 
SQL.  Send  resume  to  Attn: 
CWBC  at  Beckman  Coulter  Inc., 
via  e-mail  at  ehr.staffing® 
coulter.com 

where  the  best  get  better 


1-800-762-2977 


Information  Systems/ 

Systems  Analyst 
Global  Information  Management 
Americas  Inc.,  part  of  Tetra  Pak, 
currently  seeks  an  eBusiness 
Info  Systems  Analyst  to  evaluate 
business  requs  for  s/ware  needs 
&  perform  implementation  & 
provide  support  for  new  tools  & 
s/ware.  Qualified  applicants  must 
have  a  BS  in  Computer  and/or 
Information  Science  &  2  yrs 
exp  in  job  offered  or  as  Systems 
Analyst/Manager.  Must  have  exp 
w/  specialized  s/ware,  imple¬ 
mentation  &  system  design. 
Send  resumes  to  [no  calls 
pis):  Dianne  Trillo,  Employment 
Services  Coordinator,  Tetra 
Pak  Inc.,  101  Corporate  Woods 
Pkwy,  Vernon  Hills,  III  60061 .  Pis 
ref:  DT/ISA.  (Please  note  that 
interviews  will  be  held  at  company 
site  in  Denton,  TX). 


QA  Analyst,  wanted  by  IT  com¬ 
pany  in  Ohio.  Must  have  Bachelors 
Degree  in  Engineering  or  Science 
besides  two  years  of  experience 
in  analyzing  and  performing 
software  quality  assurance  of 
applications  using  SQA  Suite, 
Winner,  Load  Runner,  Test 
Director  and  Silk  Tools  for  Unix, 
Sun-Solaris,  and  Windows  95/98/ 
2000/NT  environment;  analyze 
user  requirements  and  implement 
test  procedures;  writing  test 
Scripts  and  performing  QA  with 
different  test  cases;  User  Interface, 
Regression,  Back-end,  Database 
testing  and  Documenting  Errors; 
Communicate  and  create  peri¬ 
odical  status  reports;  Perform 
queries  to  check  the  Database; 
performed  QA  for  compatibility  of 
various  browsers. 

Respond  to  Anthem  Technologies, 
Inc.,  77  West  Elm  Wood  Drive, 
Suite  1 13, Dayton,  OH  45459. 


Senior  Software  Engineer  wanted 
in  Houston,  TX.  Research,  design 
and  writes  computer  software, 
applying  techniques  of  software 
engineering  and  mathematical 
analysis.  Designs  Data  Models, 
Process  Models,  and  Object 
Models.  Designs  database  ap¬ 
plications  using  Powerbuilder, 
Oracle,  and  Sybase.  Requires  a 
Masters  degree  in  Computer 
Science  or  Computer  Engineer¬ 
ing  and  3  years  progressive 
experience.  Send  resumes  to: 
HR  Dept.,  Codon  Group  Inc., 
9894  Bissonnet,  Ste.  445, 
Houston,  TX  77036. 


PROGRAMMER  sought  by  e- 
commerce  provider  in  Houston, 
TX.  Respond  by  resume  to:  D/S, 
Y/H,  Director  of  Technology, 
ChanneLinx,  Inc.,  3910  Kirby  Dr., 
Suite  201,  Houston,  TX  77098. 


Actuarial  Programmer 
with  pension  applications 
experience  for  Senior 
Consultant  position  in 
Teaneck,  N.J.  E-mail 
resumes  to:  resumes- 
JXP  @  buckconsultants. 

com. 


National  Instruments  Corp  is  a 
fast  growing  Hi-tech  Co  based  in 
Austin,  TX  and  is  currently  seek¬ 
ing  to  fill  multiple  positions  in  the 
following: 

Software  Engineers 
Research,  dsgn  &  dvlp  s/ware  in 
mainly  C/C++  using  OO  dsgn  & 
s/ware  dsgn  principles.  Must 
have  Bachelors  in  Engg.  or 
Comp  Sci  or  Physics  or  Math. 
CODE:  ZSW 
Applications  Engineers 
Develop  applications  for  prod¬ 
ucts,  systems  and  new  business 
opportunities.  Provide  technical 
support  for  software  products 
and  their  applications  to  cus¬ 
tomers,  sales  engineers,  and 
distributors.  Resolve  technical 
issues  using  an  understanding 
of  electronics  and  software  pro¬ 
gramming  fundamentals.  Must 
have  Bachelor's  in  Engineering 
or  Computer  Science,  or  Physics 
or  Math.  CODE:  ZAE 
Computer  Hardware  Design 
Engineers 

Research,  dvlp  &  manage  pro¬ 
jects  in  data  acquisition,  signal 
conditioning,  industrial  commu¬ 
nication,  instrument  Ctrl,  image 
acquisition,  embedded  con¬ 
trollers  &  ASIC  prdcts  using  dsgn 
techniques  in  analog  &  digital 
circuit  dsgn,  comp  architecture, 
communication  bus  interfacing  & 
digital  signal  processing.  Must 
have  Bachelors  in  Engg,  Comp 
Sci,  or  Physics  or  Math.  CODE: 
ZHE 

Programmer/Analysts  (Business 
Processes) 

Plan,  analyze,  dsgn,  dvlp  &  test 
s/ware  using  Oracle,  Lotus  Notes, 
Web;  use  GUI  &  object-oriented 
dsgn  to  dvlp  user  interfaces  & 
data  entry  screens  that  support 
business  functions.  Bach  in  Info 
Sys  or  Comp  Sci  or  Business 
Admin.  CODE:  ZPA 
Staff  Programmer/Analysts 
Evaluating  applications  develop¬ 
ment  projects,  leading  a  team  of 
Programmer  analysts/interns; 
planning,  analyzing,  dsgng, 
dvlpng  &  testing  s/ware  using 
Oracle  &  Lotus  Notes;  using  GUI 
&  object-oriented  dsgn  to  dvlp 
user  interfaces  &  data  entry 
screens.  Bach,  needed  and  2 
years  as  Programmer/Analyst. 
CODE:  SPA 

Fax  resumes  to:  Raja  Faris, 
National  Instruments  Corp  at 
512-683-6924.  Job  Code  must 
appear  on  resume. 


Computer  Professionals  w/exp 
to  install,  program,  analyze, 
design,  develop  &  test  scripting, 
data  conversion,  end-to-end 
testing,  testplan,  testing  Life 
Cycle  &  Bug  Life  Cycle  in  auto¬ 
mated  test  environment  of  web 
&  client  server  applications  using 
WinRunner,  Automation  tool, 
performance  testing  using  Load- 
Runner,  Test  Director,  SQL 
Server  &  Oracle.  Send  resume 
to:  Recruiter  GITS,  LLC,  7067 
East  Chestnut  Hill  St,  Littleton, 
CO  80130.  Email:  recruiter 
@  olobalinfotechservices.net  No 
in-person  resumes/interviews, 
only  respond  by  mail  or  email. 


Dublin  Manufacturing  Co.  seeking 
F/T  expd.  Manager  of  Product 
Support  to  research,  design,  and 
developing  of  computer  software 
systems,  in  conjunction  with 
hardware  product  development. 
Analyze  software  requirements 
to  determine  feasibility  of  design 
within  time  and  cost  constraints. 
Consult  with  hardware  engineers 
and  other  engineering  staff 
to  evaluate  interface  between 
hardware  and  software,  and 
operational  and  performance 
requirements  of  overall  system. 
Formulate  and  design  software 
system,  using  scientific  analysis 
and  mathematical  models  to 
predict  and  measure  outcome 
and  consequences  of  design. 
Bachelor's  degree  in  Computer 
Science,  competitive  salary.  Fax 
resume  to  Alison  (561 )  995-6027. 


The  tech  game  has  changed. 
How  you  Will,  hasn't. 
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The  tech  game  can  change  all  it 
wants  to.  but  savvy  technology 
professionals  still  know  how  to  win 
with  Dice.  Show  change  who's  the 
boss.  Visit  Dice.com  today. 


©2002  Dice  Inc. 


divine, inc.  computer  software 
applications  developers  and 
consultants,  are  seeking  quali¬ 
fied  applicants  for  the  following 
positions:  Systems  Engineer, 
Senior  Application  Integration 
Engineer,  Staff  Software  Engi¬ 
neer,  Senior  Software  Engineer, 
Senior  Engineer,  Software  Engi¬ 
neer,  Engineer,  Sr.  Technical 
Training  Specialist,  Sr.  Consul¬ 
tant,  Consultant,  Director  of 
Development  and  Integrations, 
Development  Director,  Loader/ 
Development  Team  Lead,  UNIX 
System  Administrator,  Gateway 
Developer  and  Director.  Openings 
are  available  at  the  following 
locations:  Fairfield,  CT.,  St.  Louis, 
MO,  Burlington,  MA,  Chicago, 
IL„  Denver,  CO.,  Norcross, 
GA,  Columbus,  OH.,  and  Santa 
Monica,  CA.  Interested  appli¬ 
cants  should  forward  their 
resumes:  divine.inc.,  Attn:  DK 
1;3333  Warrenville  Rd.,  Lisle, 
IL.  60532  or  by  fax  addressed  to 
DK  1  at:  630-799-0060.  EOE 


SOFTWARE  ENGINEER  to  pro¬ 
vide  on  site  consulting  to 
perform  object  oriented  design 
for  client/server  and  internet 
industrial  software  applications 
using  C/C++,  J2EE,  JavaScript, 
VBScript,  HTML,  Java,  XML, 
XSL,  WebLogic,  Oracle,  Rogue- 
wave,  CORBA  in  UNIX/Windows 
and  Rational  Rose/Together 
J  and  web  reports.  Require:  M.S. 
in  Electronics  Engineering/Com¬ 
puter  Science  and  two  years 
experience  in  the  job  offered  or 
any  experience  providing  skills 
in  described  duties.  40%travel 
required  to  client  sites  within  the 
United  States.  Salary:  $72,000 
per  year,  8  am  to  5  pm,  M-F.  Apply 
with  resume  to:  President. 
ObjectNet  Technologies,  Inc., 
1117  Perimeter  Center  West, 
Suite  N402,  Atlanta.  GA  30338. 


SYSTEMS  ANALYST:  Respon¬ 
sible  for  systems  development 
&  production  support.  Work 
experience  in  the  following  Infor¬ 
mation  Technologies:  Mainframe 
Based  Applications,  Altamira 
Banking  Software,  CICS,  MVS. 
TSO,  ISPF,  DB2,  PACE,  COBOL, 
RPG400,  SAFE,  JCL,  VSAM 
organization,  analysis,  design 
&  structured  programming 
methodology.  All  modules  of 
Abanks  front  desk  System  and 
SIMM  Information  Banking  sys¬ 
tem.  Experience  redesigning  & 
programming  General  Ledger 
applications  from  Mainframe  to 
AS/400  using  Cobol400  and 
RPG400.  Ability  to  work  on  all 
phases  of  application  develop¬ 
ment  from  gathering  &  analyzing 
user  requests  up  to  deploy  in 
production. Min.  4  yrs  exp.  in  job 
offered.  Competitive  salary,  F/T, 
Mon-Fri  (may  require  evening 
&  weekends),  must  be  willing 
to  travel  &  relocated  as  neces¬ 
sary,  position  available  in  Ft. 
Lauderdale,  FL.  Monica  de  los 
Riosat  Softtek:  2900  University 
Drive,  Coral  Springs,  FL  33065 


DIRECTOR  OFTECHNOLOGY- 
Interior  Construction  Company 
seeks  Director  of  Technology 
with  the  following  responsibilities: 
Oversee  a  network  of  1 00  work¬ 
stations,  15  servers  &  a  tech, 
staff  of  2  programmer  analysts  & 
5  network  technicians;  design  & 
build  construction  information 
system  &  integrate  w/existing 
legacy  accounting  system; 
integrate  existing  construction 
technology  with  AIA  standard 
processes  to  streamline  the 
work  processes.  Successful 
candidate  will  have  a  Bachelor's 
degree  in  Computer  Science  or 
Civil  Engineering,  &  1  y  exp.  in 
job  duties  or  1  yr.  exp.  as  Civil 
Engineer.  Experience  in  DB 
programming,  Drywall  technolo¬ 
gies  &  processes  &  NT  networks 
a  must.  Mail  resume  to  Component 
Assembly  Systems,  620  Fifth 
Ave.,  Pelham,  NY  10803,  Attn: 
John  Rapaport. 
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0  careers 


Sc'iW  Mechanical  CAD  Integia- 
*iort  Software  Development 
Engineer  to  design,  program, 
document,  and  lest  interfaces 
tor  third  party  mechanical 
Computer  Aided  Design  ('CAD") 
t  iyinee'mg  design  systems  in¬ 
cluding  Pro/Engineer,  Solid- 
wurvs  and  AutoCAD  on  Unix 
a-W  Windows  NT  operating  sys¬ 
tems  Anaiyze  existing  legacy 
dalabace  management  and  file 
processing  systems  for  electron¬ 
ic  mechanical  CAD  engineering 
document  storage  and  control, 
and  provide  design  and  feasibil¬ 
ity  analysis  for  enhancing  and 
upgrading  systems  utilizing  C++ 
pi  ogramming  language  and  oth¬ 
er  software  development  tools. 
Analyze  and  propose  changes  to 
mechanical  CAD  software  inte¬ 
grations  to  improve  overall  sys¬ 
tem  reliability  and  throughput. 
Review  software  developed  to 
ensure  compliance  with  func¬ 
tional  and  technical  specifica¬ 
tions.  Create  and  maintain  unit 
level  automation  regression  test 
systems  for  software  code  de¬ 
veloped.  Develop  and  implement 
software  test  plans,  prepare  test 
standards  and  procedures  for 
performing  mechanical  and  au¬ 
tomated  lest  programs.  Perform 
analysis  and  document  test 
results  for  mechanical  CAD 
Integrations  and  other  general 
integration  fools.  Provide  techni¬ 
cal  guidance  and  support  on 
mechanical  CAD  design  engi¬ 
neering  to  software  developers 
and  quality  assurance  engineers. 
Requirements:  Master  Degree  in 
Mechanical  Engineering  and 
one  (1)  year  experience  in  job 
ottered  or  one  ( 1 )  year  experience 
in  mechanical  engineering  re¬ 
search  and  development.  Candi¬ 
date  must  also  possess  demon¬ 
strated  expertise  designing 
mechanical  systems  using  Pro / 
Engineer,  Solidworks,  and  Auto¬ 
CAD;  demonstrated  expertise 
utilizing  mechanical  design 
systems  running  on  Unix  and 
Windows  NT  operating  systems; 
and,  demonstrated  expertise 
utilizing  mechanical  design 
systems  to  write  software  inter¬ 
faces  using  C++  programming 
language  (experience  gained 
during  graduate  studies  accept¬ 
able).  40+  hours/week,  8:00AM 
to  5:00PM,  $85, 000/year.  Submit 
two  (2)  copies  ot  resume  to  Case 
#20012162,  Labor  Exchange 
Office,  19  Staniford  Street,  1st 
floor,  Boston,  MA  02114.  Must 
have  proof  of  legal  authority  to 
work  permanently  in  the  U.S. 


Wild  Tangent,  Inc.  seeks  Sr.  S/W 
Engnr  for  Bellevue  Office.  DESC: 
Dsgn,  dev  &  impl  compressed  & 
streaming  RT  digital  video  &  3D 
multimedia  computer  graphics 
&  animation  app's  util  C/C++, 
DirectX,  COM,  Java  &  scripting 
languages  to  run  on  multiple 
platforms,  incl  Win  based  O/S. 
Execute  &  apply  current  rsrch 
math  models  tor  compression, 
image  processing  &  3D  graphics. 
REQ:  BS  in  Engnr,  CS,  Math 
or  Phys  +  3  yrs  of  exp  dsgning, 
deving  &  impling  RT  computer 
graphics  &  animation  app's  util 
C/C++,  DirectX,  COM,  &  scripting 
languages  to  run  on  Win  based 
O/S,  &  1  yr  of  exp  dsgning  & 
deving  math  models  for  com¬ 
pression,  image  processing, 
digital  video  &  3D  graphics.  Pis 
send  resume  to  WT-101  Wild 
Tangent,  18578  NE  67th  Ct; 
Build  5,  Redmond  E.  Office 
Complex,  Bellevue,  WA,  98052. 
Job#  required. 


World  Wide  Automotive,  Inc.  is 
looking  for  exp.  Sr.  Business 
Analyst  Programmer  Strategic 
design,  development  &  imple¬ 
mentation  of  financial  systems 
tor  automation  of  business 
processes  using  MF6/PR0. 
70%  travel.  Req.  Bach.  deg.  in 
Business  Admin.,  Comp.  Sci.  or 
ret.  field,  3  yrs.  exp.  in  job  ottered 
or  3  yrs.  exp  in  developing 
bus.  proc.  automation  s/w  in 
MFG/PRO  Please  send  resume 
to  www  wwaiecrutting.com. 


Senior  Mechanical  CAD  Integra¬ 
tion  Quality  Assurance  Engineer 
to  perform  tests  for  integrations 
of  third  party  mechanical  CAD 
engineering  systems  including 
Pro/Engineer.  Solidworks,  and 
AutoCAD  on  Unix  and  Windows 
NT  operating  systems.  Analyze 
related  documentation,  software 
designs,  and  software  code.  An¬ 
alyze  existing  legacy  database 
management  and  file  processing 
systems  developed  using  C++ 
for  electronic  mechanical  CAD 
engineering  document  storage 
and  control,  and  provide  recom¬ 
mendations  for  improvement 
particularly  those  to  support 
mechanical  CAD  integrations. 
Develop  and  implement  software 
test  plans,  prepare  test  stan¬ 
dards  and  procedures  for  per¬ 
forming  mechanical  and  auto¬ 
mated  test  programs,  and 
perform  analysis  and  document 
test  results  for  mechanical  CAD 
integrations  and  other  general 
integration  tools.  Analyze  and 
propose  modifications  to  me¬ 
chanical  CAD  software  integra¬ 
tions  to  improve  overall  system 
reliability  and  throughput.  Review 
software  developed  to  ensure 
compliance  with  functional  and 
technical  specifications.  Create 
and  maintain  unit  level  automation 
regression  test  systems  for  soft¬ 
ware  code  developed.  Provide 
technical  support  and  guidance 
on  mechanical  CAD  design 
engineering  to  software  devel¬ 
opers  and  quality  assurance 
engineers.  Requirements:  Master 
Degree  in  Mechanical  Engineer¬ 
ing  and  two  (2)  years  experience 
in  job  ottered  or  two  (2)  years 
experience  in  mechanical  engi¬ 
neering  research  and  develop¬ 
ment.  Candidate  must  also  pos¬ 
sess  demonstrated  expertise 
designing  mechanical  systems 
using  Pro/Engineer  and  Solid- 
works;  demonstrated  expertise 
utilizing  mechanical  design 
systems  running  on  Unix  and 
Windows  NT  operating  systems; 
and,  demonstrated  expertise 
utilizing  mechanical  design 
systems  developed  using  C++ 
programming  language  (experi¬ 
ence  gained  during  graduate 
school  acceptable).  40+  hours/ 
week,  8:00AM  to  5:00PM, 
$75,000/year.  Submit  two  (2) 
copies  of  resume  to  Case 
#20012083,  Labor  Exchange 
Office,  19  Staniford  Street,  1st 
floor,  Boston,  MA  02114.  Must 
have  proof  of  legal  authority  to 
work  permanently  in  the  U.S. 


Net/Programmer/Analyst  II 

Provide  functional  and  technical 
expertise  for  enhancements  and 
for  maintenance  of  existing  func¬ 
tionality  of  the  NET/Leshner 
applications,  including  design, 
development  of  programs  spec¬ 
ifications,  code  writing,  testing 
and  implementation.  Develop 
function  and  program  specifica¬ 
tions,  write  RPG  code,  test, 
implement  support,  and  main¬ 
tain  applications  enhancements. 
Assess  requirements  and  translate 
them  into  code.  Candidates  must 
have  a  Master’s  or  equivalent 
in  Computer  Science,  MIS,  En¬ 
gineering,  or  related  field  &  3  yrs 
of  relevant  progressive  profes¬ 
sional  experience  in  the  above 
stated  areas.  Please  forward 
resume  to  Mr.  Onyeka  N.  Nchege, 
Director  of  Mid  Range  Applica¬ 
tions.  Pillowtex  Corporation.  One 
Lake  Circle  Dr.  Kannapolis,  NC 
28081. 


Programmer/Analyst,  Columbia. 
MD.  Analyze,  design,  implement 
&  test  e-business  applications 
&  project  full  life  cycle;  develop 
engine  track  protal  using  content 
management  software  tools  & 
develop  web-based  solutions  for 
warranty  groups.  Work  w/Java 
technology,  Oracle,  VB,  Apache, 
Rational  Rose,  scripting  Td, 
HTML,  &  SQL  Server.  Reqd: 
B.S.C.S  &  2  yrs.  exp.  Freq.  Reloc. 
within  U.S.  may  be  necessary. 
M-F,  40  hrs/wk,  9am-5pm.  Send 
resume  to  J.  Brigham,  HR  #777, 
TEK  Systems,  6992  Columbia 
Gateway  Drive,  Columbia,  MD 
21046. 


COMPUTER  PROFESSIONALS 

Opportunities  for: 

♦WEB  ARCHITECTS/ 
DEVELOPERS 

•  SYSTEMS  ANALYSTS 

•  WEB  GRAPHIC  DESIGNERS 

•  NETWORK  ENGINEERS 

•  PROGRAMMER/ANALYSTS 

•  SOFTWARE  ENGINEERS 

SKILLS: 

•  COLD  FUSION  •  SPECTRA 

•  ORACLE  •  VISUAL  BASIC 

•  VISUAL  C++  •  SIEBEL  •  ASP 

•  COM.  DCOM  •  JSP  •  HTML 

•  JAVA.  JAVA  BEAN  •  EJB  JAVA 
SERVLETS  •  WEBSPHERE 

•  IBM  MQ  SERIES  •  XML,  UML 

•  MTS  •  CLARIFY  •  PERL 
•OBJECTPERL  •  SPYPERL 

•  SMALLTALK  •  PL/SQL 

•  VISUAL  AGE  •  COBOL,  SPL, 
UNIX 

Visit  our  website  @ 
www.computerhorizons.com 

Attractive  salaries  and  benefits. 
Please  forward  your  resume  to: 
H.R.  Mgr.,  Computer  Horizons 
Corp.  49  Old  Bloomfield  Avenue, 
Mountain  Lakes,  New  Jersey 
07046-1495.  Call  973-299-4000. 
E-mail:  jobs  @  computerhorizons. 
com.  An  Equal  Opportunity  Em¬ 
ployer  M/F. 


Multiple  openings  available  for 
Prog/Sys  Analysts,  DBA's, 
Sys/Admin  and  S/W  Engineers 
to  design/develop  S/W  appls 
using  some  of  the  following  - 
Cobol,  CICS,  DB2;  Java,  Power¬ 
Builder,  HTML,  XML;  data 
warehousing,  cognos;  wireless/ 
web  technologies;  C++,  VB, 
Oracle,  Developer  2000,  SAP, 
ABAP/4;  Oracle/Sybase/Informix 
database  admin;  Unix/NT  system 
admin;  IBM  Net.Commerce, 
MQSeries,  Websphere;  BS/MS 
or  equivalent  in  CS,  Engg, 
Science,  Math  or  Bus  Admin 
required.  Salary:  $70-90K  full 
time.  Travel/relocation  involved. 
Resumes  to:  HR,  Smartsoft 
International  4898  South  Old 
Peachtree  Road,  Suite  200, 
Norcross,  GA  30071. 


Software  Engineer  Washington, 
DC  Require  experience  in  design 
and  development  of  applications 
in  ColdFusion,  SQL  Server, 


Visual  Basic,  C++,  Oracle. 


Attractive  compensation  package. 
Send  resume  by  fax  only  to 
Votenet  Solutions  Inc.  at  (775) 
201-7279 


Systems  Engineer  wanted  by 
info  technology  co  in  NYC. 
Provide  tech  support;  install  and 
maint  client  systems  and 
netwrks.  Sun  Solaris,  Veritas 
products,  Oracle.  PL/SQL,  Unix. 
Resume  to  Enterprise  24x7  Inc., 
292  Fifth  Ave,  4th  FI,  NY, 
NY  10001. 


Systems  Engineer:  Will  perform 
LIM  measurements  &  automatic 
macro  detect  detection  on  com¬ 
pany  microchip  wafer  inspection 
system  and  sorters.  Will  work 
at  client  sites  throughout  US.  All 
resumes  should  be  faxed  to: 
Attn:  L.  Guidone,  203-230-0305, 
Microtronic,  Inc.  4  Charlesgate 
East,  Ste.  801,  Boston,  MA 
02215 

BrightStar  is  searching  for 
SAP  Analysts/Consultants 
for  Siebel,  Basis,  Sales, 
Distribution,  HR,  or  Payroll 
projects.  Send  resumes  to: 
BrightStar,  4900  Hopyard  Rd., 
Suite  200,  Pleasanton,  CA 
94588,  Attn:  HR;  or  e-mail  to 
jobs  @  brightstar.com. 


DATA  PROCESSING  &  TELE¬ 
COMMUNICATIONS  PROF: 
Including  Project  Leaders,  A/P 
&  Systems  Analysts  specficially 
w/SAP,  JAVA,  CDMA,  GSM 
wireless  telecommunications  exp. 
to  work  in  consulting  environment. 
Fax  to  818  502  331 1  or  email  to 
losangeles  @  abraxas.com 


Senior  Software  Engineer  wanted 
in  Naples,  FL.  Research,  design 
and  write  computer  software 
for  business  decision  support 
applying  techniques  of  software 
engineering  and  mathematical 
analysis  for  SAP  Systems.  De¬ 
signs  Data  Models  and  develops 
data  warehouses,  database 
applications  using  SAP  R/3  and 
BW.  Requires  Masters  degree  in 
Computer  Science/Computer 
Engineering  or  related  field  and 
3  years  progressive  experience 
in  SAP  Business  Warehouse. 
Send  resumes  to:  HR  Dept., 
Timaska  Consulting,  215  Sunbelt 
Circle,  Sanford,  FL  32771. 


Programer/Analyst:  Design  and 
develop  database  applications 
using  ERWIN,  SQL/PL/SQL, 
PeopleSoft  HRMS  and  financials 
as  well  as  Oracle  tools  (forms, 
reports  and  graphics).  Test 
applications  for  quality  assurance. 
Implement  and  train  users 
with  new  products.  Req.  BS  or 
equivalent  in  CS  or  CIS  w/  nine 
months  experience  in  job  offered 
or  software  development.  Must 
be  proficient  in  Crystal  Reports 
and  OOA&D  on  Unix.  $50,000/ 
yr,  9-5,  40  hr/wk.  Send  resume 
to  Softedge,  Inc.  at  4675  N. 
Shallowford  Road,  Suite  206, 
Atlanta,  GA  30338. 


Director  of  MIS  &  Technology 
wanted  to  perform  enterprise¬ 
wide  technology  &  info  systms 
implmtn  using  ERP  tools,  plus 
utilize  general  bus  knowl  in  vari¬ 
ous  areas.  Pos  is  loc  in  Houston, 
TX.  Hrs:  M-F  9-5.  Must  have  BS 
(or  equiv)  in  Comp  Sci.  Engg 
or  related  field  +5  yrs  exp  in 
position  offd,  or  in  related  occu¬ 
pation  such  as  S/ware  Consultant 
or  Project  Engr  for  info  systms 
dvlpmt  &  implmtn.  Apply  to:  Attn: 
Jackie  Meredith-Batchelor,  P.O. 
Box  8018.  Philadelphia.  PA 
19101-8018. 


SOFTWARE  ENGINEER  sought 
by  battery  testing  mfg.  co.  in 
College  Station,  TX.  Must  have 
M.S.  in  Computer  Science  plus 
exp.  Respond  by  resume  to:  Mr.  J. 
Zhang,  S/W.  Multi  Electrochem 
Test  System  (METS),  762  Peach 
Creek  Cut  Off  Rd.,  College 
Station,  TX  77845. 


Software  Engineers  -  Job#1) 
Lead  a  s/ware  development  grp- 
Intergrate  ORACLE  applications 
using  web  methods,  XML,  J2EE, 
CGI,  PERL,  Servlets,  MQ  Series, 
Pivotal  eRelationship  CRM. 
Job#  2)  Desgn,  dvlp,  implmt  & 
tech  support  s/ware  systems  in 
ADABAS,NATURAL,TSO,COB 
OL,  DB2. 

Reqs  2  yrs  experience  on  job 
with  a  MS  or  5  Yrs  on  Job  with  a 
BS  in  Engg  or  equivalent.$89K 
To:  Shiva  Systems  635  Anderson 
Cir  109  Deerfield  Beach  FL 
33441 


Computer  Programmer 

Quantum  Performance  Solutions 
seeks  a  Computer  Programmer 
in  our  Bethlehem,  PA  loc.  Position 
involves  designing,  developing, 
writing  and  implementing  Web 
based  applications.  Involves  use 
of  technologies  including  ASP, 
Java  Script,  HTML,  IIS,  SQL 
Server  and  Admin,  Active 
Reports,  Crystal  Reports/Web, 
Robo  Help/Web,  ChartFX  Web 
Charting,  and  Web  Server  Admin. 
A  qualified  applicant  must  have 
Bachelor's  in  Comp.  Sci  or  related 
field  and  3  yrs  of  relevant  expe¬ 
rience.  Applicants  send  resume 
to  HR,  Quantum  Performance 
Solutions,  528  North  New  Street, 
Bethlehem,  PA  18018. 


F/T  Project  Implementation 
Specialist.  Responsible  for 
working  with  the  customer  to 
analyze  and  document  data 
processing  requirements  and 
implement  data  programming  for 
processing  those  requirements. 
Configures  and  installs  applica¬ 
tions  using  C/C++,  COBOL, 
UNIX  and  Windows.  Work  back¬ 
ground  must  have  included  exp. 
with  the  US  telephone  billing/ 
mediation  industry.  Must  have  a 
Bachelor’s  degree  in  Computer 
Engineering  or  foreign  degree 
equivalent.  Must  have  two  years 
exp.  Salary:  Competitive.  Send 
resume  to:  R  Laudenschlager, 
Intec  Telecom  Systems,  5775 
Peachtree  Dunwoody  Rd.,  Bldg. 
G,  3rd  FL,  Atlanta,  GA  30342. 


A  new  millenium,  a  new  solution.  ITcareers. 
Call  Janis  Crowley  at  1-800-762-2977  mlDG 
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Federal  Reserve 

continued  from  page  1 

cials  acknowledge  they  have 
no  concrete  plan  for  handling 
the  authentication  of  online 
identity  for  the  Web-based  pro¬ 
cessing  they  want  to  begin  this 
year. 

Nor  is  the  Fed  alone  in  its 
quandary  over  security.  Pay.gov, 
a  government  Web  site  support¬ 
ing  ACH-based  transactions,  is 
struggling  with  ACH  authenti¬ 
cation.  The  Department  of  the 
Treasury’s  Financial  Manage¬ 
ment  Service  runs  that  site. 

According  to  Pay.gov  program 
manager  Greg  Till,  the  Web  site 
whose  ACH  processing  is  han¬ 
dled  by  the  Federal  Reserve 
Bank  of  Cleve¬ 
land,  is  “operating 
in  limited  fashion” 
as  it  tries  to  figure 
out  authentication 
procedures. 

Currently,  only  a 
limited  number  of 
personnel  from 
the  Department  of 
Veterans  Affairs 
and  the  Bureau  of  Alcohol,  To¬ 
bacco  and  Firearms  use  the  site 
under  what  Till  calls  “the  friends 
and  family”  privacy  method  of 
carefully  dispensing  passwords 
to  known  agencies  and  busi¬ 
nesses. 

“We  understand  the  risks,  and 
we’re  thinking  about  reliability 
and  security” said  Bill  Burouski, 
senior  vice  president  at  the 
Federal  Reserve  Bank  of  Chi¬ 
cago,  who  joined  other  Fed 
executives  at  last  week’s 
Payments  2002  conference  in 
Dallas  to  discuss  this  embrace 
of  online  processing. 

The  Fed  considers  one  of  the 
strongest  forms  of  authentica¬ 
tion,  digital  certificates,  as  too 
“cumbersome”  after  testing 
them  during  Web  services  pilot 
projects  with  about  100  finan¬ 
cial  institutions. 

The  Fed  may  adopt  just  sim¬ 
ple  passwords  or  perhaps  the 
stronger  authentication  provid¬ 
ed  by  smart  cards  and  token- 
based  authentication,  Burouski 
said. 

“All  of  us  are  going  to  have  to 
think  hard  about  risks  and  miti¬ 
gation,"  said  Sally  Green,  execu¬ 
tive  vice  president  at  the  Fed¬ 
eral  Reserve  Bank  of  Boston. 

Moving  to  open  systems 
poses  a  greater  security  chal¬ 
lenge  than  do  the  old  terminals 
used  to  access  the  Fed  network 
today,  she  acknowledges. 

Green  said  the  Fed  has  decid¬ 
ed  to  abandon  the  develop¬ 


ment  of  an  expensive  Windows- 
based  application  it  had 
worked  on  for  years  to  replace 
the  Fed’s  older  DOS-based  pay¬ 
ments  programs.  The  DOS- 
based  programs  are  still  put  to 
use  on  terminals  among  banks 
today. 

“We  have  chosen  not  to  roll 
out  our  Fedline  for  Windows 
product  and  instead  will  go 
directly  to  Web-based  services,” 
Green  said.  “Historically,  we’ve 
used  proprietary  hardware,  soft¬ 
ware  and  services,  but  the  Web 
will  allow  us  to  reach  more 
users  in  more  locations.” 

The  Federal  Reserve,  and 
banks  in  general,  are  surprised 
by  the  results  of  the  Fed’s  just- 
released  study  of  the  volume  of 


checks  and  electronic  pay¬ 
ments  made  in  the  U.S.  in  2000. 
That  study  has  many  in  this 
community  thinking  they  will 
miss  the  e-commerce  payments 
wave  unless  they  quickly  get  on 
board  and  take  advantage  of 
processing  on  the  Web. 

The  study  shows  that  there 
were  49.6  billion  checks  worth 
a  total  of  $47.7  trillion  written 
in  2000,  as  opposed  to  the  32 
billion  checks  worth  $24  tril¬ 
lion  written  in  1979.  The  sur¬ 
prise  is  that  the  share  of  checks 
to  electronic  payments  has  de¬ 
clined  from  85%  in  1979  to 
about  60%  in  2000. 

The  term  “electronic  pay¬ 
ments”  refers  to  credit  and 
debit  cards,  ACH  and  Elec¬ 
tronic  Benefits  Transfer  (used 
in  government  financial  assis¬ 
tance  programs).  ACH  account¬ 
ed  for  78%  of  electronic-pay¬ 
ment  dollars  and  19%  of  trans¬ 
action  volumes. 

“I’m  seeing  a  pace  of  change 
unlike  any  in  my  experience,” 
said  Cathy  Minehan,  president 
of  the  Federal  Reserve  Bank  of 
Boston. 

“The  payments  system  we’ve 
known  for  so  long  may  be  dis¬ 
appearing.  Electronic  pay¬ 
ments  are  on  the  cusp  of 
becoming  the  dominant  pay¬ 
ment.  But  are  we  ready  for  it?” 
Minehan  asks. 

“The  Fed  identified  18  billion 
checks  that  could  be  replaced 
each  year  by  ACH,”  says  Janet 


Boyst,  senior  vice  president  at 
Wachovia  Bank  and  a  board 
member  of  the  National 
Clearing  House  Association 
(NACHA),the  organization  that 
sets  rules  for  ACH.  With  the  Web 
growing  in  importance  in  pay¬ 
ments  processing, 

NACHA  last  week  said  it 
would  launch  its  own  study  to 
better  define  security  require¬ 
ments  for  next-generation  ACH 
networks. 

NACHA  already  took  its  first 
step  in  this  arena  last  March 
when  it  issued  NACHA  Web 
Payments  Rules  for  authorizing 
consumer  debit  over  the  Web. 
Companies  have  started  to  use 
ACH  in  Web  transactions. 

DaimlerChrysler  now  offers  a 


way  for  car  buyers  to  pay  each 
month  at  its  Web  site  by  initiat¬ 
ing  a  debit  payment  for  the  car 
loan.  It  outsourced  the  ACH  pay¬ 
ment  function  to  Fort  Knox 
National  Company  (FKNC).  Cus¬ 
tomers  paying  loans  online  are 
transferred  to  a  Web  page  at  the 
FKNC  Web  site  that  looks  like  the 
DaimlerChrysler  Web  site.  FKNC 
collects  the  ACH  authorization 
for  the  money  to  be  transferred 
from  the  customer’s  bank 
account  after  the  buyer  authen¬ 
ticates  his  identity 

That  authentication  is  actual¬ 
ly  a  “shared  secret”  known 
by  the  buyer  and  Daimler¬ 
Chrysler,  said  Karen  Brewster, 
manager  of  lockbox  control  at 
DaimlerChrysler  Financial 
Services,  who  spoke  on  the 
topic  at  Payments  2002. 

After  the  ACH  debit  is  autho¬ 
rized,  the  customer  gets  an 
e-mail  confirming  that  the 
funds  were  withdrawn  from  his 
account. 

Priscilla  Capes,  executive  vice 
president  at  FKNC,  said  the 
NACHA  rules  for  the  Web  so  far 
require  that  each  session  be¬ 
tween  buyer  and  the  site  must 
be  encrypted  by  128-bit  Secure 
Sockets  Layer  and  have  in 
place  a  “fraudulent-transaction 
detection  system,”  in  addition 
to  an  annual  security  audit.  ■ 
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aggregated  over  four  ports,  and 
like  many  of  Cisco’s  IP  products, 
it  will  have  virtual  LAN,  Open 
Shortest  Path  First  Routing  and 
SNMP  and  support  distances  of 
up  to  about  3,100  mile  between 
devices. 

The  company  also  says  it  will 
add  the  Layer  2-7  services  to  the 
SN  5420  and  future  products 
such  as  the  FCIP  blade  and  the 
SN  5428.  These  services  include 
virtual  LAN,  virtualization  and 
remote  copy  support. 

Customers  say  this  is  a  boon. 

“Any  new  storage  routers 
would  have  to  be  managed  and 
monitored  with  the  current  tools 
we  use  to  monitor  our  current 
Cisco  network,”  Medical  Col¬ 
lege’s  Vieth  says.  “We  don’t  have 
time  to  learn  another  piece  of 
management  software  that 
would  be  used  exclusively  for 
storage  routers.” 

Cisco  has  as  many  as  100  em¬ 
ployees  dedicated  to  storage.  It 
also  has  invested  $42  million  in 
storage  start-up  Andiamo.  And- 
iamo  is  making  a  large  multipro¬ 
tocol  switch  that  will  compete 
with  Brocade’s  Silkworm  12000 
and  have  iSCSI,  Fibre  Channel 
and  DWDM  modules.  Brocade 
has  promised  iSCSI,  FCIP  and  In¬ 
finiBand,  but  so  far  has  only 
delivered  128  Fibre  Channel 
ports. 

However,  tension  is  palpable 
between  Cisco’s  Storage  Business 
Unit  and  Andiamo,  sources  say, 
leading  them  to  question  which 
division  of  Cisco  ultimately  will 
deliver  port-dense  storage  prod¬ 
ucts.  Observers  say  that  if 


Andiamo’s  products  are  success¬ 
ful,  Cisco  will  invest  as  much  as 
$142  million  more.  Cisco  also  has 
agreed  to  acquire  the  company 
for  as  much  as  $2.5  billion. 

Last  year,  the  company  invested 
in  a  10%  share  of  StoreAge 
Networking  Technologies,  a  start¬ 
up  that  is  virtualizing  data  by 
forming  it  into  common  pools 
that  can  be  accessed  and  man¬ 
aged  from  a  common  interface. 
Cisco  has  indicated  its  storage 
products  will  be  the  platform  for 
services  such  as  virtualization 
and  virtual  SANs. 

The  company  also  announced 
plans  to  enter  the  storage  service 
provider  market,  providing  gear 
to  implement  large  dispersed 
data  centers.  Cisco  currently  has 
the  ONS  15540  DWDM  switch, 
which  accomplishes  long-range 
transport  of  data  over  IPCoupled 
with  the  SN  5420,  or  the  new 
switch  and  existing  Catalyst  6500 
switches,  Cisco  is  working  to¬ 
ward  that  goal. 

Despite  the  activity,  some 
experts  remain  skeptical  about 
Cisco’s  chances  in  the  storage 
market. 

“I  really  need  to  see  Cisco 
have  some  success  with  stor¬ 
age,”  says  Tony  Prigmore.an  ana¬ 
lyst  with  Enterprise  Storage 
Group.  “I  understand  why  you 
have  to  give  them  respect  be¬ 
cause  of  who  they  are,  but  they 
have  to  earn  a  lot  more  respect 
with  volume  and  meaningful 
customer  relations  before  they 
can  be  considered  a  storage 
player.”  ■ 
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<My  brain  hurts/> 
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s  you  may  have  noticed,  over  in 
my  evil  twin’s  domain, Gearhead 
(page  50),  the  topic  of  the  last 
gazillion  columns  has  been  Web  ser¬ 
vices.  It  has  been  a  feast  of  acronyms, 
a  smorgasbord  of  technology  and  a 
deluge  of  detail.  We  have  been  extended  with  XML, 
lathered  with  SOAP, schemed  with  XSD  and  rocked  by 
RPC,  not  to  mention  directed  by  UDDI  and  serviced 
by  WSDL.I  don’t  know  about  you,  but  my  brain  hurts. 

While  Gearhead  has  taken  a  pretty  good  swing  at 
the  nuts  and  bolts  of  Web  services,  what  Gearhead 
hasn’t  and  won’t  be  doing  is  covering  the  other  half 
of  the  equation:  the  business  issues. What  will  Web 
services  do  for  business? 

There  has  been  too  little  coverage  of  why  as  busi¬ 
ness  people,  we  should  be  concerned  with  using 
this  panorama  of  technology.  After  all,  if  you  peel 
away  the  bits  and  bytes  and  take  a  look  at  Web  ser¬ 
vices,  there’s  definitely  the  appearance  of  the  emper¬ 
or’s  new  clothes.  Once  the  technology  is  out  of  the 
way  what  do  we  have?  Some  processes  that  are  the 
result  of  new  code  or  legacy  code  being  presented 
as  XML  content  through  services  over  TCP/IP  con¬ 
nections.  Doesn’t  sound  very  “new”  does  it? 

But  the  opposite  is  true.  It  is  all  about  the  context 
of  how  Web  services  are  structured,  presented  and 
delivered  rather  than  the  mechanics  of  doing  so  that 


makes  Web  services  such  a  powerful  idea  and  pro¬ 
found  business  strategy 

What’s  happening  is  we  are  taking  the  first  small 
leap  of  the  next  evolutionary  jump  in  information 
technology  In  fact,  let  me  be  more  bold  than  that: 
This  evolutionary  jump  will  not  be  just  an  IT  phe¬ 
nomenon  —  it  will  change  the  way  our  culture  func¬ 
tions  in  terms  of  business  practices,  communica¬ 
tions,  entertainment  and  education. 

The  windup  for  this  jump  lies  in  the  explosion  of 
XML  and  the  lack  of  structure  in  our  legacy  data.l 
have  read  that  in  the  average  corporation,  unstruc¬ 
tured  content  accounts  for  some  84%  of  all  data. 
While  knowledge-mining  tools  can  extract  informa¬ 
tion  from  the  data,  the  accuracy  of  that  process  is 
questionable: You  will  only  be  able  to  establish  the 
context  of  some  small  percentage  of  the  data  you 
own  and  that  context  won’t  be  exact  —  it  will  be 
assumed  from  inference  and  clues  concerning  the 
location,  known  sources  and  dating  of  the  data. 

Sure,  sophisticated  data  mining  and  analysis  tools 
are  available  —  see  my  Web  Applications  newsletter 
on  an  interesting  tool  called  Stratify  Discovery  Server 
(www.nwfusion.com,  DocFinder  9041). These  kinds 
of  tools  can  have  tremendous  value,  but  they  aren’t 
going  to  deal  with  all  your  legacy  data.Time  and 
expense  set  limits  on  what  can  be  mined. 

But  it  is  the  future  that  matters.  As  XML  becomes  as 


commonplace  as,  say,  HTML,  we  will  start  to  have 
knowledge  about  our  business  operations  built  into 
our  data.  We  will  build  implicit  procedural  knowl¬ 
edge  into  our  business  processes  simply  by  produc¬ 
ing  structured  data. 

Then  we’ll  wrap  that  vision  in  defined  services  to 
control  access.  Digital  Rights  Management  (DRM) 
and  privacy  controls,  a  la  the  W3C’s  Platform  for 
Privacy  Preferences  Project  (P3P),will  make  the  dis¬ 
tribution  of  data  and  information  far  more  control¬ 
lable  than  it  is  today  Security  becomes  easier 
because  you  know  what  you  own.  If  you  place  a 
value  on  some  type  of  data, you  should  be  able  to 
find  out  exactly  how  much  of  that  data  exists,  where 
it  is  and  who  has  access  to  it. 

Now  this  might  sound  abstract,  but  think  of  it  in 
practical  terms  —  in  terms  of  knowing  how  every 
piece  of  data  was  generated  and  why  and  where  it 
fits  into  your  business  and  how  it  can  be  moved 
around,  distributed  and  modified. The  implications 
for  how  we  do  business  in  the  private  and  public 
sectors,  and  how  we  are  entertained,  informed  and 
interact  are  profound. 

It  is  going  to  be  quite  an  evolutionary  step.  I  expect 
my  head  will  hurt  for  some  time. 

Discuss  your  aching  head  with  backspin@gihbs 
.com. 
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By  Paul  McNamara 

If  you  really  love  a  book,  set  it  free 

There  was  a  time  not  long  ago  that  venture  capi¬ 
talists  would  have  been  queued  up  outside  Ron 
Hornbaker's  Kansas  City,  Mo.,  office  waving  multi- 
million-dollar  checks  for  “the  eyeballs"  being  drawn 
to  his  year-old  Web  site:  www.bookcrossing.com. 

The  fact  that  no  one’s  lined  up  today  doesn't  make 
Hornbaker’s  baby  any  less  cool. 

BookCrossing.com  is  an  online  community  for  people  who  love  books  and  would 
rather  hand  their  dog-eared  favorites  to  a  total  stranger  —  for  free  —  than  see 
those  books  collect  dust  on  a  shelf,  or  worse,  wind  up  in  a  landfill.  You  don’t  need 
the  Web  to  avoid  these  fates,  of  course,  so  what’s  interesting  here  is  that  there’s 
also  a  “message  in  a  bottle"  twist  to  the  site  that  pays  the  participant  an  intangi¬ 
ble  return  no  used  bookstore  could  match. 

In  a  nutshell,  BookCrossing  members  "release”  their  books  “into  the  wild"  — 
they  leave  them  in  a  public  place  —  after  having  registered  the  titles  on  the  site 
and  affixed  provided  stickers  that  explain  the  purpose  of  BookCrossing.  The  stick¬ 
ers  include  a  unique,  randomly  generated  identification  number. 

In  theory,  the  person  who  stumbles  across  the  book  is  supposed  to  note  the 
•  t;>,er,  be  intrigued,  visit  www.bookcrossing.com,  report  the  ID  number  and  log  a 
.•  '  a1  untry  about  the  find.  They’re  also  supposed  to  read  the  book,  of  course, 
and  offer  a  review  of  its  merits. 

Hck  comes  from  learning  the  book  you  released  has  found  a  good  home  and 
‘  t  s  to  make  the  rounds.  The  kicker,  sadly,  is  that  only  about  10%  of  the  books 
:rd  rom  again  . . .  although  that  doesn't  seem  to  discourage  the  participants. 
•'  they  do  make  a  journal  entry  saying  'Hey,  I  found  this  book  at  such  and 
afe.'  [an  application  on  the  site]  e-mails  all  the  previous  owners  —  including 
v  igmat  registrant  and  anyone  along  the  chain  who  has  made  a  journal  entry  on 
f  it  ixx  ’  to  let  them  know,"  Hornbaker  says. 


Hornbaker  was  moved  to  launch  BookCrossing  after  visiting  www.wheresgeorge 
.com  —  a  popular  yet  puzzling  site  that  lets  members  register  and  track  the  circula¬ 
tion  of  dollar  bills  —  and  www.phototag.org,  one  of  a  number  of  sites  that  apply  the 
pass-it-along  theme  to  disposable  cameras.  (Buzz  can  only  imagine  the  outtakes.) 

BookCrossing  has  3,400  members  and  is  adding  about  80  per  day,  says 
Hornbaker,  whose  real  job  is  being  president  and  CTO  at  Humankind  Systems,  a 
software  development  company. 

The  BookCrossing  site  is  certainly  slick  —  as  opposed  to  those  from  which  it 
drew  inspiration  —  and  if  nothing  else  stands  as  a  compelling  advertisement  for 
Humankind.  But  might  it  ever  stand  on  its  own  as  a  business? 

“Someday,  when  we  have  critical  mass,  having  this  many  book  lovers  under  our 
control  will  be  a  powerful  thing,"  Hornbaker  says.  “When  we  get  serious  numbers, 
we'll  be  able  to  feature  new  books  [for  a  fee] . . .  and  promote  them  in  a  viral  way." 

In  the  meantime,  the  site  will  go  on  making  a  whole  lot  of  book  lovers  happy. 

It's  much  bigger  than  a  breadbox 

Most  public  relations  stunts  stink  because  they  insult  the  intelligence  of  the 
public  and  the  press. 

But,  I  like  this  "contest"  question  from  Lumeta,  a  network  management  and 
security  vendor:  “How  big  is  2  to  the  104th?” 

The  idea  is  to  describe  in  mere  words  the  vastness  of  that  number,  which  is 
“more  than  20  million  trillion  trillion,”  according  to  Lumeta.  (The  number  matters 
to  Lumeta  because  its  firewall  reportedly  simulates  that  many  types  of  packets 
in  generating  its  reports.)  Here's  an  example  of  what  they're  looking  for: 

“Did  you  know  that  2  to  the  104th  atoms  of  lead  make  a  sphere  almost  35  feet  in 
diameter?  It  would  weigh  15.5  million  pounds." 

Got  a  good  one?  Enter  at  www.lumeta.com. 

Don't  get  too  excited,  though:  The  prizes  are  nowhere  near  as  impressive  as 
that  number. 

Contacting  the  column  is  easier.  The  address  is  buzz@nww.com. 
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The  New  Enterprise-Class  IBM  (©server  xSeries“440. 


You  have  two  choices:  All  your  money  upfront  for  capacity  you  might  not  use.  Waste.  Or  own  the  new  \440 
that  lets  you  add  capacity  as  you  need  it.  Waste  Not.  Scale  from  a  4-way  today,  to  an  8-way  tomorrow,  to  a 
16-way  in  the  future.  And  utilize  some  of  the  most  advanced  self-managing,  self-healing  features  ever. 
Learn  more  at  ibm.com/eserver/x440.  To  talk  to  a  specialist,  or  locate  an  IBM  Business  Partner,  call 
800.426.7777.  (Mention  priority  code  102AX001.) 

The  IBM  x440  with  the  new  Intel  Xeon  lYocessor  MP.  Everything  else  comes  in  second. 
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(Pooh-pooh  it  now,  while  you  still  can.) 


CleverPath”  Portal  and  Business  Intelligence  Solutions 


Every  major  innovation  in  technology  has  initially  been  met  with  more 
than  a  little  resistance.  Portal  technology  is  no  different.  But  today's 
curiosity  is  well  on  its  way  to  becoming  a  necessity.  Why?  Because 
CleverPath  Portal  and  Business  Intelligence  solutions  bring  your  applica¬ 
tions,  business  processes,  and  data  together  in  one  location,  to  be 
shared  and  used  like  never  before.  That  means  the  right  information  can 
go  straight  to  the  right  people  at  the  right  time  — all  in  a  personalized 
way.  Don't  spend  another  day  without  tapping  into  the  true  value  of  your 
enterprise.  Go  to  ca.com/cleverpath/portal  and  find  out  more  now. 
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